Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 09-08-2020

Ran by Ryan (administrator) on LAPTOP-G530781F (Acer Aspire E5-575) (10-08-2020 09:25:42)

Running from C:UsersRyanDownloads

Loaded Profiles: Ryan

Platform: Windows 10 Home Version 2004 19041.388 (X64) Language: English (United States)

Default browser: Chrome

Boot Mode: Normal

 

==================== Processes (Whitelisted) =================

 

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

 

(Acer Incorporated -> ) C:OEMPreloadFubToolFubTool.exe

(Acer Incorporated -> ) C:Program Files (x86)AcerCare CenterACCStd.exe

(Acer Incorporated -> Acer Incorporated) C:Program FilesAcerAcer Quick AccessePowerButton_NB.exe

(Acer Incorporated -> Acer Incorporated) C:Program FilesAcerAcer Quick AccessQAAdminAgent.exe

(Acer Incorporated -> Acer Incorporated) C:Program FilesAcerAcer Quick AccessQAAgent.exe

(Acer Incorporated -> Acer Incorporated) C:Program FilesAcerAcer Quick AccessQALockHandler.exe

(Acer Incorporated -> Acer Incorporated) C:Program FilesAcerAcer Quick AccessQASvc.exe

(Adobe Inc. -> Adobe Inc.) C:Program Files (x86)Common FilesAdobeARM1.0armsvc.exe

(Google LLC -> Google LLC) C:Program Files (x86)GoogleChromeApplicationchrome.exe <13>

(Google LLC -> Google LLC) C:Program Files (x86)GoogleUpdate1.3.35.452GoogleCrashHandler.exe

(Google LLC -> Google LLC) C:Program Files (x86)GoogleUpdate1.3.35.452GoogleCrashHandler64.exe

(IDSA Production signing key -> Intel) C:Program Files (x86)IntelDriver and Support AssistantDSAService.exe

(IDSA Production signing key -> Intel) C:Program Files (x86)IntelDriver and Support AssistantDSATray.exe

(IDSA Production signing key -> Intel) C:Program Files (x86)IntelDriver and Support AssistantDSAUpdateService.exe

(INTEL CORP) C:Program FilesWindowsAppsAppUp.IntelGraphicsExperience_1.100.2731.0_x64__8j3eq9eme6cttIGCC.exe

(Intel® pGFX 2020 -> Intel Corporation) C:WindowsSystem32DriverStoreFileRepositorycui_dch.inf_amd64_bb78abeaf9afb67eigfxCUIService.exe

(Intel® pGFX 2020 -> Intel Corporation) C:WindowsSystem32DriverStoreFileRepositorycui_dch.inf_amd64_bb78abeaf9afb67eigfxEM.exe

(Intel® pGFX 2020 -> Intel Corporation) C:WindowsSystem32DriverStoreFileRepositorycui_dch.inf_amd64_bb78abeaf9afb67eigfxext.exe

(Intel® pGFX 2020 -> Intel Corporation) C:WindowsSystem32DriverStoreFileRepositoryigcc_dch.inf_amd64_8739c242c92433b5OneApp.IGCC.WinService.exe

(Intel® pGFX 2020 -> Intel Corporation) C:WindowsSystem32DriverStoreFileRepositoryiigd_dch.inf_amd64_b57a83a6990c9a72IntelCpHDCPSvc.exe

(Intel® pGFX 2020 -> Intel Corporation) C:WindowsSystem32DriverStoreFileRepositoryiigd_dch.inf_amd64_b57a83a6990c9a72IntelCpHeciSvc.exe

(Intel® Software Development Products -> ) C:Program FilesIntelSURQUEENCREEKx64esrv.exe

(Intel® Software Development Products -> ) C:Program FilesIntelSURQUEENCREEKx64esrv_svc.exe

(Intel® Trusted Connect Service -> Intel® Corporation) C:Program FilesInteliCLS ClientIntelPTTEKRecertification.exe

(Microsoft Corporation -> Microsoft Corporation) C:Program FilesMicrosoft Xbox 360 AccessoriesXBoxStat.exe

(Microsoft Corporation -> Microsoft Corporation) C:WindowsMicrosoft.NETFramework64v3.0WPFPresentationFontCache.exe

(Microsoft Corporation -> Microsoft Corporation) C:WindowsSystem32CompatTelRunner.exe <2>

(Microsoft Corporation) C:Program FilesWindowsAppsmicrosoft.windowscommunicationsapps_16005.13110.41006.0_x64__8wekyb3d8bbweHxTsr.exe

(Microsoft Windows -> Microsoft Corporation) C:WindowsSystem32oobeUserOOBEBroker.exe

(Microsoft Windows -> Microsoft Corporation) C:WindowsSystem32smartscreen.exe

(NortonLifeLock Inc. -> NortonLifeLock Inc.) C:Program Files (x86)Norton Security SuiteEngine22.20.5.39nsWscSvc.exe

(Symantec Corporation -> Symantec Corporation) C:Program Files (x86)Norton Security SuiteEngine22.20.5.39NortonSecurity.exe <2>

(www.shadowexplorer.com) [File not signed] C:Program Files (x86)ShadowExplorersesvc.exe

 

==================== Registry (Whitelisted) ===================

 

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

 

HKLM…Run: [RTHDVCPL] => C:Program FilesRealtekAudioHDARAVCpl64.exe [18390912 2018-11-08] (Realtek Semiconductor Corp. -> Realtek Semiconductor)

HKLM…Run: [RtHDVBg_TrueHarmony] => C:Program FilesRealtekAudioHDARAVBg64.exe [1506176 2018-11-08] (Realtek Semiconductor Corp. -> Realtek Semiconductor)

HKLM…Run: [IAStorIcon] => C:Program FilesIntelIntel® Rapid Storage TechnologyIAStorIcon.exe [321112 2019-07-29] (Intel® Rapid Storage Technology -> Intel Corporation)

HKLM-x32…Run: [Intel Driver & Support Assistant] => C:Program Files (x86)IntelDriver and Support AssistantDSATray.exe [284520 2020-07-31] (IDSA Production signing key -> Intel)

HKUS-1-5-19…RunOnce: [WAB Migrate] => C:Program FilesWindows Mailwab.exe [518656 2019-12-07] (Microsoft Windows -> Microsoft Corporation)

HKUS-1-5-20…RunOnce: [WAB Migrate] => C:Program FilesWindows Mailwab.exe [518656 2019-12-07] (Microsoft Windows -> Microsoft Corporation)

HKUS-1-5-21-2794731821-2035859010-3306423656-1001…Run: [CCleaner Smart Cleaning] => C:Program FilesCCleanerCCleaner64.exe [29271224 2020-08-05] (Piriform Software Ltd -> Piriform Software Ltd)

HKUS-1-5-21-2794731821-2035859010-3306423656-1001…Run: [Web Companion] => C:Program Files (x86)LavasoftWeb CompanionApplicationWebCompanion.exe –minimize 

HKLMSoftwareMicrosoftActive SetupInstalled Components: [8A69D345-D564-463c-AFF1-A69D9E530F96] -> C:Program Files (x86)GoogleChromeApplication84.0.4147.105Installerchrmstp.exe [2020-07-29] (Google LLC -> Google LLC)

 

==================== Scheduled Tasks (Whitelisted) ============

 

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

 

Task: 00054A40-8025-4E7C-B39F-DD4C4E2FE4D0 – System32TasksACCBackgroundApplication => C:Program Files (x86)AcerCare CenterACCStd.exe [4696880 2018-05-28] (Acer Incorporated -> )

Task: 0CC29F5E-D585-4D0E-8D38-CF4494873D89 – System32TasksCareCenterXboxStat_Reg_HKLMRun => C:Program FilesMicrosoft Xbox 360 AccessoriesXBoxStat.exe [825184 2009-09-30] (Microsoft Corporation -> Microsoft Corporation)

Task: 21461526-C790-41B4-BC6D-B4A39F887E2E – System32TasksGoogleUpdateTaskMachineCore => C:Program Files (x86)GoogleUpdateGoogleUpdate.exe [153168 2017-05-09] (Google Inc -> Google Inc.)

Task: 26B566AE-09A2-48FD-9647-729ED2B23509 – System32TasksQuick Access => C:Program FilesAcerAcer Quick AccessQALauncher.exe [446256 2019-09-26] (Acer Incorporated -> Acer Incorporated)

Task: 271AB411-1DC8-406C-A543-2FCD32DE3F2B – System32TasksNorton 360Norton Security Suite Error Analyzer => C:Program Files (x86)Norton Security SuiteEngine22.15.1.8SymErr.exe

Task: 29DC9EA8-C058-4980-BB53-7C2166F0E6FB – System32TasksACCAgent => C:Program Files (x86)AcerCare CenterLiveUpdateAgent.exe [41264 2016-12-02] (Acer Incorporated -> )

Task: 477EF559-CF46-4E3E-840D-7DFE0C000231 – MicrosoftWindowsUNPRunCampaignManager -> No File <==== ATTENTION

Task: 4E578C13-C3DA-4F1C-8319-492FD4110447 – System32TasksSoftware Update Application => C:ProgramDataOEMUpgradeToolListCheck.exe [474368 2019-09-25] (Acer Incorporated -> Acer Incorporated)

Task: 4E7EE745-5A69-4949-AD98-6233A9C9AE20 – System32TasksAMSkipUAC => C:Program Files (x86)ZemanaAntiMalwareAntiMalware.exe [658808 2020-07-29] (Zemana D.O.O. Sarajevo -> Zemana Ltd.)

Task: 503F95FE-3F51-4BF2-9C3E-3FE01EB7EB60 – System32TasksNorton Security SuiteNorton Security Suite Error Analyzer => C:Program Files (x86)Norton Security SuiteEngine22.20.5.39SymErr.exe [117192 2020-07-23] (NortonLifeLock Inc. -> NortonLifeLock Inc)

Task: 5216020C-49BC-4204-B0D7-C6CC5E22905E – System32TasksPower Button => C:Program FilesAcerAcer Quick AccessePowerButton_NB.exe [2770736 2019-09-26] (Acer Incorporated -> Acer Incorporated)

Task: 566A23FE-F7FA-4A03-91CE-F8E2CB336BF2 – System32TasksIUM-F1E24CA0-B63E-4F13-A9E3-4ADE3BFF3473 => C:Program Files (x86)IntelIntel® Update Managerbiniumsvc.exe

Task: 620C54A2-004A-48FF-B8BC-89559E76E1DD – System32TasksRemediationAntimalwareMigrationTask => C:Program FilesCommon FilesAVNorton Security SuiteUpgrade.exe [2162328 2020-07-23] (NortonLifeLock Inc. -> NortonLifeLock Inc.)

Task: 6459D4E2-77E3-44C4-AC3B-73A90B106A7D – System32TasksNorton Security SuiteNorton Security Suite Autofix => C:Program Files (x86)Norton Security SuiteEngine22.20.5.39SymErr.exe [117192 2020-07-23] (NortonLifeLock Inc. -> NortonLifeLock Inc)

Task: 7DABEA8F-0FB7-40F9-A146-FFC4AEF1A16D – System32TasksGoogleUpdateTaskMachineUA => C:Program Files (x86)GoogleUpdateGoogleUpdate.exe [153168 2017-05-09] (Google Inc -> Google Inc.)

Task: 7EAABBB9-2191-49A9-9F07-6B1ACF8222C6 – System32TasksIntelSURQC-Upgrade-86621605-2a0b-4128-8ffc-15514c247132 => C:Program FilesIntelSURQUEENCREEKUpdaterbinIntelSoftwareAssetManagerService.exe [3087184 2020-03-10] (Intel® Software Development Products -> Intel Corporation)

Task: 7F2C4910-CECD-4C27-BEEC-C79F57228B61 – System32TasksCCleaner Update => C:Program FilesCCleanerCCUpdate.exe [686384 2020-08-05] (Piriform Software Ltd -> Piriform Software Ltd)

Task: 8B7F42F8-9257-4A0A-A276-118478D64C57 – System32TasksIntel PTT EK Recertification => C:Program FilesInteliCLS ClientIntelPTTEKRecertification.exe [909112 2016-07-26] (Intel® Trusted Connect Service -> Intel® Corporation)

Task: 8BCA3F7D-EF53-4E53-8361-0E77EEE4B5D0 – System32TasksNorton WSC Integration => C:Program Files (x86)Norton Security SuiteEngine22.20.5.39WSCStub.exe [644608 2020-07-23] (NortonLifeLock Inc. -> NortonLifeLock Inc.)

Task: 984BD7F6-21DF-461B-9E22-32614B1AC86C – System32TasksFubToolByPLD => C:OEMPreloadFubToolFubTool.exe [30976 2015-05-14] (Acer Incorporated -> )

Task: 9C298ADC-555D-4775-93EC-F9D76234BE1F – System32TasksUSER_ESRV_SVC_QUEENCREEK => “C:WINDOWSSystem32Wscript.exe” //B //NoLogo “C:Program FilesIntelSURQUEENCREEKx64task.vbs”

Task: A1FCEFB1-C63F-4270-912D-412B751A1FEB – System32TasksIntelSURQC-Upgrade-86621605-2a0b-4128-8ffc-15514c247132-Logon => C:Program FilesIntelSURQUEENCREEKUpdaterbinIntelSoftwareAssetManagerService.exe [3087184 2020-03-10] (Intel® Software Development Products -> Intel Corporation)

Task: B1DDF2CA-8B86-490E-9139-188DF4A5628E – System32TasksNorton Security SuiteNorton Security Suite Error Processor => C:Program Files (x86)Norton Security SuiteEngine22.20.5.39SymErr.exe [117192 2020-07-23] (NortonLifeLock Inc. -> NortonLifeLock Inc)

Task: B4FF754D-B50E-4322-A7B8-56F8EC75341E – System32TasksNorton 360Norton Security Suite Autofix => C:Program Files (x86)Norton Security SuiteEngine22.15.1.8SymErr.exe

Task: B73981A9-D2E0-4D1C-B77E-0047795359D1 – System32TasksAMHelper => C:Program Files (x86)ZemanaAntiMalwareAntiMalware.exe [658808 2020-07-29] (Zemana D.O.O. Sarajevo -> Zemana Ltd.)

Task: CCCE91B4-21AA-477E-9CBE-05C76BA566E3 – System32TasksACC => C:Program Files (x86)AcerCare CenterLiveUpdateChecker.exe [2920752 2017-05-24] (Acer Incorporated -> )

Task: CF3A98F1-75A5-4D5B-97E9-8710740281CE – System32TasksAdobe Acrobat Update Task => C:Program Files (x86)Common FilesAdobeARM1.0AdobeARM.exe [1331792 2020-05-07] (Adobe Inc. -> Adobe Inc.)

Task: DB1BDCDC-2B30-4C81-ABAE-65789F39339D – System32TasksAvast SoftwareOverseer => C:Program FilesCommon FilesAVAST SoftwareOverseeroverseer.exe [1660520 2020-02-27] (Avast Software s.r.o. -> Avast Software)

Task: E973A883-63BD-4EB3-8E11-A26B5F31D1DF – System32TasksCCleanerSkipUAC => C:Program FilesCCleanerCCleaner.exe [24770744 2020-08-05] (Piriform Software Ltd -> Piriform Software Ltd)

Task: FBAD410A-F828-4AEB-8094-D2FA9BDC16EC – System32TasksNorton 360Norton Security Suite Error Processor => C:Program Files (x86)Norton Security SuiteEngine22.15.1.8SymErr.exe

 

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

 

 

==================== Internet (Whitelisted) ====================

 

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

 

TcpipParameters: [DhcpNameServer] 75.75.75.75 75.75.76.76

Tcpip..Interfaces1bcfb6e7-f2f9-4c33-9a1a-cd5504fe6bb8: [DhcpNameServer] 75.75.75.75 75.75.76.76

Tcpip..Interfaces28dbc1b6-1044-4f7b-b76b-b1d513d4ee0b: [DhcpNameServer] 40.30.1.66

 

Internet Explorer:

==================

HKUS-1-5-21-2794731821-2035859010-3306423656-1001SoftwareMicrosoftInternet ExplorerMain,Default_Page_URL = hxxp://acer17swin10.msn.com/?pc=ASJE

SearchScopes: HKUS-1-5-21-2794731821-2035859010-3306423656-1001 -> DefaultScope 2ABEA513-8F6D-4D28-B1E2-2FCEC7623457 URL = 

SearchScopes: HKUS-1-5-21-2794731821-2035859010-3306423656-1001 -> 2ABEA513-8F6D-4D28-B1E2-2FCEC7623457 URL = 

SearchScopes: HKUS-1-5-21-2794731821-2035859010-3306423656-1001 -> 9FF14212-41B6-4884-BD5E-07D2D0555A5E URL = hxxp://www.bing.com/search?q=searchTerms&form=MSSEDF&pc=MSSE

BHO: IEToEdge BHO -> 1FD49718-1D00-4B19-AF5F-070AF6D5D54C -> C:Program Files (x86)MicrosoftEdgeApplication84.0.522.52BHOie_to_edge_bho_64.dll [2020-08-01] (Microsoft Corporation -> Microsoft Corporation)

BHO: Norton Password Manager -> 602ADB0E-4AFF-4217-8AA1-95DAC4DFA408 -> C:Program Files (x86)Norton Security SuiteEngine22.20.5.39coIEPlg.dll [2020-07-23] (NortonLifeLock Inc. -> NortonLifeLock Inc.)

BHO-x32: IEToEdge BHO -> 1FD49718-1D00-4B19-AF5F-070AF6D5D54C -> C:Program Files (x86)MicrosoftEdgeApplication84.0.522.52BHOie_to_edge_bho.dll [2020-08-01] (Microsoft Corporation -> Microsoft Corporation)

BHO-x32: Norton Password Manager -> 602ADB0E-4AFF-4217-8AA1-95DAC4DFA408 -> C:Program Files (x86)Norton Security SuiteEngine3222.20.5.39coIEPlg.dll [2020-07-23] (NortonLifeLock Inc. -> NortonLifeLock Inc.)

BHO-x32: No Name -> 65DEE40A-3E93-4cae-9F98-B8E06DCEE2BF -> No File

Toolbar: HKLM – Norton Toolbar – 7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA – C:Program Files (x86)Norton Security SuiteEngine22.20.5.39coIEPlg.dll [2020-07-23] (NortonLifeLock Inc. -> NortonLifeLock Inc.)

Toolbar: HKLM-x32 – Norton Toolbar – 7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA – C:Program Files (x86)Norton Security SuiteEngine3222.20.5.39coIEPlg.dll [2020-07-23] (NortonLifeLock Inc. -> NortonLifeLock Inc.)

 

Edge: 

======

Edge DefaultProfile: Default

Edge Profile: C:UsersRyanAppDataLocalMicrosoftEdgeUser DataDefault [2020-08-10]

 

FireFox:

========

FF DefaultProfile: yso3r0jl.default-1588284606954

FF ProfilePath: C:UsersRyanAppDataRoamingMozillaFirefoxProfilesyso3r0jl.default-1588284606954 [2020-08-10]

FF NewTab: MozillaFirefoxProfilesyso3r0jl.default-1588284606954 -> about:newtab

FF Session Restore: MozillaFirefoxProfilesyso3r0jl.default-1588284606954 -> is enabled.

FF Extension: (Norton Password Manager) – C:UsersRyanAppDataRoamingMozil[email protected]norton.com.xpi [2020-08-07]

FF Extension: (Norton Safe Web) – C:UsersRyanAppDataRoamingMozillaFiref[email protected]symantec.com.xpi [2020-07-07]

FF Extension: (uBlock Origin) – C:UsersRyanAppDataRoamingMozill[email protected]raymondhill.net.xpi [2020-07-23]

FF HKLM-x32…FirefoxExtensions: [8D150B8F-EFE8-45a3-A4A3-053020F48FAC] – C:Program Files (x86)WondershareVideoConverterFreeSVRFirefoxExt => not found

FF Plugin-x32: @videolan.org/vlc,version=3.0.1 -> C:Program Files (x86)VideoLANVLCnpvlc.dll [2019-08-14] (VideoLAN -> VideoLAN)

FF Plugin-x32: @videolan.org/vlc,version=3.0.8 -> C:Program Files (x86)VideoLANVLCnpvlc.dll [2019-08-14] (VideoLAN -> VideoLAN)

FF Plugin-x32: Adobe Reader -> C:Program Files (x86)AdobeAcrobat Reader DCReaderAIRnppdf32.dll [2020-05-03] (Adobe Inc. -> Adobe Systems Inc.)

 

Chrome: 

=======

CHR DefaultProfile: Default

CHR Profile: C:UsersRyanAppDataLocalGoogleChromeUser DataDefault [2020-08-10]

CHR DownloadDir: C:UsersRyanDownloads

CHR DefaultSearchURL: Default -> hxxps://searchsafe.norton.com/search?omnisearch=yes&q=searchTerms

CHR DefaultSearchKeyword: Default -> nortonsafe

CHR Extension: (Norton Password Manager) – C:UsersRyanAppDataLocalGoogleChromeUser DataDefaultExtensionsadmmjipmmciaobhojoghlmleefbicajg [2020-08-10]

CHR Extension: (MEGA) – C:UsersRyanAppDataLocalGoogleChromeUser DataDefaultExtensionsbigefpfhnfcobdlfbedofhhaibnlghod [2020-08-10]

CHR Extension: (Video Downloader professional) – C:UsersRyanAppDataLocalGoogleChromeUser DataDefaultExtensionselicpjhcidhpjomhibiffojpinpmmpil [2020-08-10]

CHR Extension: (uBlock – free ad blocker) – C:UsersRyanAppDataLocalGoogleChromeUser DataDefaultExtensionsepcnnfbjfcgphgdmggkamkmgojdagdnn [2020-08-10]

CHR Extension: (Norton Safe Web) – C:UsersRyanAppDataLocalGoogleChromeUser DataDefaultExtensionsfnpbeacklnhmkkilekogeiekaglbmmka [2020-08-10]

CHR Extension: (Norton Safe) – C:UsersRyanAppDataLocalGoogleChromeUser DataDefaultExtensionsmpnlkmlkncncpgnnkmkgoobfpnjmblnk [2020-08-10]

CHR Extension: (Chrome Web Store Payments) – C:UsersRyanAppDataLocalGoogleChromeUser DataDefaultExtensionsnmmhkkegccagdldgiimedpiccmgmieda [2020-08-10]

CHR Extension: (Chrome Media Router) – C:UsersRyanAppDataLocalGoogleChromeUser DataDefaultExtensionspkedcjkdefgpdelpbcmbmeomcjbeemfm [2020-08-10]

CHR Profile: C:UsersRyanAppDataLocalGoogleChromeUser DataGuest Profile [2020-08-07]

CHR Profile: C:UsersRyanAppDataLocalGoogleChromeUser DataSystem Profile [2020-08-07]

CHR HKLM…ChromeExtension: [cjabmdjcfcfdmffimndhafhblfmpjdpe] – C:Program Files (x86)Norton Security SuiteEngine22.20.5.39ExtsChrome.crx <not found>

CHR HKLM…ChromeExtension: [iikflkcanblccfahdhdonehdalibjnif]

CHR HKLM-x32…ChromeExtension: [chgdeabpmphfhkoemjjglmilajldekbp] – C:Program Files (x86)WondershareVideoConverterFreeSVRChromePlugin.crx <not found>

CHR HKLM-x32…ChromeExtension: [cjabmdjcfcfdmffimndhafhblfmpjdpe] – C:Program Files (x86)Norton Security SuiteEngine22.20.5.39ExtsChrome.crx <not found>

CHR HKLM-x32…ChromeExtension: [iikflkcanblccfahdhdonehdalibjnif]

 

==================== Services (Whitelisted) ===================

 

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

 

S4 ICEsoundService; C:WINDOWSsystem32ICEsoundService64.exe [806144 2018-11-08] (ICEpower a/s -> ICEpower)

S3 MBAMService; C:Program FilesMalwarebytesAnti-MalwareMBAMService.exe [6970968 2020-08-04] (Malwarebytes Inc -> Malwarebytes)

R2 NortonSecurity; C:Program Files (x86)Norton Security SuiteEngine22.20.5.39NortonSecurity.exe [344760 2020-07-23] (Symantec Corporation -> Symantec Corporation)

R2 nsWscSvc; C:Program Files (x86)Norton Security SuiteEngine22.20.5.39nsWscSvc.exe [1056096 2020-07-23] (NortonLifeLock Inc. -> NortonLifeLock Inc.)

S3 QALSvc; C:Program FilesAcerAcer Quick AccessQALSvc.exe [466224 2019-09-26] (Acer Incorporated -> Acer Incorporated)

R3 QASvc; C:Program FilesAcerAcer Quick AccessQASvc.exe [508208 2019-09-26] (Acer Incorporated -> Acer Incorporated)

S2 rkrtservice; C:Program FilesRogueKillerRogueKillerSvc.exe [13580344 2020-08-10] (Adlice -> )

R2 sesvc; C:Program Files (x86)ShadowExplorersesvc.exe [9216 2013-01-02] (www.shadowexplorer.com) [File not signed]

S3 WdNisSvc; C:ProgramDataMicrosoftWindows Defenderplatform4.18.1910.4-0NisSrv.exe [3201616 2019-11-02] (Microsoft Windows Publisher -> Microsoft Corporation)

S3 WinDefend; C:ProgramDataMicrosoftWindows Defenderplatform4.18.1910.4-0MsMpEng.exe [103168 2019-11-02] (Microsoft Windows Publisher -> Microsoft Corporation)

S4 WsAppService; C:Program Files (x86)WondershareWAF2.4.3.233WsAppService.exe [493792 2017-11-07] (Wondershare Technology Co.,Ltd -> Wondershare)

S2 IntelSSTSvc; “C:WINDOWSsystem32IntelSSTAPOParameterServiceParameterService.exe” [X]

 

===================== Drivers (Whitelisted) ===================

 

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

 

R1 amsdk; C:WINDOWSsystem32driversamsdk.sys [232792 2020-08-10] (Zemana D.O.O. Sarajevo -> Copyright 2018.)

R1 BHDrvx64; C:Program Files (x86)Norton Security SuiteNortonData22.7.0.76DefinitionsBASHDefs20200728.001BHDrvx64.sys [1952136 2019-10-02] (Symantec Corporation -> Symantec Corporation)

R1 ccSet_NGC; C:WINDOWSSystem32driversNGCx641614050.027ccSetx64.sys [192248 2020-07-23] (Symantec Corporation -> Symantec Corporation)

S3 dtlitescsibus; C:WINDOWSSystem32driversdtlitescsibus.sys [30264 2017-06-03] (Disc Soft Ltd -> Disc Soft Ltd)

S3 dtliteusbbus; C:WINDOWSSystem32driversdtliteusbbus.sys [47672 2017-06-03] (Disc Soft Ltd -> Disc Soft Ltd)

R1 eeCtrl; C:Program Files (x86)Common FilesSymantec SharedEENGINEeeCtrl64.sys [516960 2020-08-03] (Symantec Corporation -> Broadcom)

R3 EraserUtilRebootDrv; C:Program Files (x86)Common FilesSymantec SharedEENGINEEraserUtilRebootDrv.sys [154464 2020-08-07] (Symantec Corporation -> Broadcom)

R1 IDSVia64; C:Program Files (x86)Norton Security SuiteNortonData22.7.0.76DefinitionsIPSDefs20200807.061IDSvia64.sys [1451016 2020-04-06] (Symantec Corporation -> Symantec Corporation)

R3 LMDriver; C:WINDOWSSystem32driversLMDriver.sys [31032 2017-10-20] (Acer Incorporated -> Acer Incorporated)

S0 MbamElam; C:WINDOWSSystem32DRIVERSMbamElam.sys [19912 2020-08-04] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes)

S3 MBAMSwissArmy; C:WINDOWSSystem32Driversmbamswissarmy.sys [248968 2020-08-04] (Malwarebytes Inc -> Malwarebytes)

R2 npf; C:WINDOWSsystem32driversnpf.sys [36600 2017-10-08] (Riverbed Technology, Inc. -> Riverbed Technology, Inc.)

R3 RadioShim; C:WINDOWSSystem32driversRadioShim.sys [25400 2017-10-20] (Acer Incorporated -> Acer Incorporated)

R3 ScpVBus; C:WINDOWSSystem32driversScpVBus.sys [39168 2013-05-05] (Bruce James -> Scarlet.Crush Productions)

R3 SRTSP; C:WINDOWSSystem32driversNGCx641614050.027SRTSP64.SYS [889704 2020-07-23] (Symantec Corporation -> Symantec Corporation)

R1 SRTSPX; C:WINDOWSSystem32driversNGCx641614050.027SRTSPX64.SYS [50920 2020-07-23] (Symantec Corporation -> Symantec Corporation)

R0 SymEFASI; C:WINDOWSSystem32driversNGCx641614050.027SYMEFASI64.SYS [1964384 2020-07-23] (Symantec Corporation -> Symantec Corporation)

S0 SymELAM; C:WINDOWSSystem32driversNGCx641614050.027SymELAM.sys [25080 2020-07-23] (Microsoft Windows Early Launch Anti-malware Publisher -> Broadcom Corporation)

R3 SymEvent; C:Windowssystem32DriversSYMEVENT64x86.SYS [100064 2019-03-31] (Symantec Corporation -> Symantec Corporation)

R3 SymEvnt; C:Program Files (x86)Norton Security SuiteNortonData22.7.0.76SymPlatformSymEvnt.sys [712368 2020-01-19] (Symantec Corporation -> Symantec Corporation)

R1 SymIRON; C:WINDOWSSystem32driversNGCx641614050.027Ironx64.SYS [316488 2020-07-23] (Symantec Corporation -> Symantec Corporation)

R1 SymNetS; C:WINDOWSSystem32driversNGCx641614050.027symnets.sys [575328 2020-07-23] (Symantec Corporation -> Symantec Corporation)

S3 USBAAPL64; C:WINDOWSSystem32Driversusbaapl64.sys [54784 2016-12-21] (Apple, Inc.) [File not signed]

S3 WdBoot; C:WINDOWSsystem32driverswdWdBoot.sys [46472 2019-11-02] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)

S3 WdFilter; C:WINDOWSsystem32driverswdWdFilter.sys [351968 2019-11-02] (Microsoft Windows -> Microsoft Corporation)

S3 WdNisDrv; C:WINDOWSSystem32driverswdWdNisDrv.sys [53984 2019-11-02] (Microsoft Windows -> Microsoft Corporation)

S3 wpCtrlDrv_NGC; C:WINDOWSSystem32driversNGCx641614050.027wpCtrlDrv.sys [1013792 2020-07-23] (NortonLifeLock Inc. -> NortonLifeLock Inc.)

 

==================== NetSvcs (Whitelisted) ===================

 

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

 

 

==================== One month (created) ===================

 

(If an entry is included in the fixlist, the file/folder will be moved.)

 

2020-08-10 09:22 – 2020-08-10 09:22 – 002296320 _____ (Farbar) C:UsersRyanDownloadsFRST64 (1).exe

2020-08-10 07:43 – 2020-08-10 07:43 – 000000000 ____D C:WINDOWSsystem32TasksRemediation

2020-08-10 07:39 – 2020-08-10 07:39 – 000000000 ____D C:UsersRyanDesktopNew folder

2020-08-10 07:37 – 2020-08-10 07:37 – 000002676 _____ C:WINDOWSsystem32TasksAMSkipUAC

2020-08-10 07:36 – 2020-08-10 09:57 – 001856031 _____ C:WINDOWSZAM.krnl.trace

2020-08-10 07:36 – 2020-08-10 07:36 – 000232792 _____ (Copyright 2018.) C:WINDOWSsystem32Driversamsdk.sys

2020-08-10 07:36 – 2020-08-10 07:36 – 000003556 _____ C:WINDOWSsystem32TasksAMHelper

2020-08-10 07:36 – 2020-08-10 07:36 – 000001340 _____ C:UsersPublicDesktopZemana AntiMalware.lnk

2020-08-10 07:36 – 2020-08-10 07:36 – 000000000 ____D C:UsersRyanAppDataLocalZemana

2020-08-10 07:36 – 2020-08-10 07:36 – 000000000 ____D C:ProgramDataMicrosoftWindowsStart MenuProgramsZemana AntiMalware

2020-08-10 07:36 – 2020-08-10 07:36 – 000000000 ____D C:Program Files (x86)Zemana

2020-08-10 07:35 – 2020-08-10 08:58 – 000000000 ____D C:UsersRyanAppDataLocalAMSDK

2020-08-10 07:35 – 2020-08-10 07:35 – 012795472 _____ (Zemana Ltd. ) C:UsersRyanDownloadsAntiMalware_Setup.exe

2020-08-10 07:33 – 2020-08-10 07:33 – 001802704 _____ (Bleeping Computer, LLC) C:UsersRyanDownloadsiExplore.exe

2020-08-10 07:31 – 2020-08-10 07:31 – 001802704 _____ (Bleeping Computer, LLC) C:UsersRyanDownloadsrkill.exe

2020-08-10 06:03 – 2020-08-10 06:03 – 000003066 _____ C:WINDOWSsystem32TasksPower Button

2020-08-10 06:03 – 2020-08-10 06:03 – 000002992 _____ C:WINDOWSsystem32TasksQuick Access

2020-08-10 05:59 – 2020-08-10 05:59 – 000000000 ____D C:UsersRyanAppDataRoamingAcer Incorporated

2020-08-09 09:56 – 2020-08-10 05:22 – 000000906 _____ C:UsersPublicDesktopRogueKiller.lnk

2020-08-09 09:56 – 2020-08-10 05:22 – 000000000 ____D C:ProgramDataMicrosoftWindowsStart MenuProgramsRogueKiller

2020-08-09 09:56 – 2020-08-10 05:22 – 000000000 ____D C:Program FilesRogueKiller

2020-08-09 09:56 – 2020-08-09 10:02 – 000000000 ____D C:ProgramDataRogueKiller

2020-08-09 09:50 – 2020-08-09 09:50 – 040314800 _____ (Adlice Software ) C:UsersRyanDownloadsRogueKiller_setup.exe

2020-08-09 06:26 – 2020-08-09 06:40 – 000036959 _____ C:UsersRyanDownloadsAddition.txt

2020-08-09 06:14 – 2020-08-10 09:56 – 000024976 _____ C:UsersRyanDownloadsFRST.txt

2020-08-09 06:06 – 2020-08-10 09:55 – 000000000 ____D C:FRST

2020-08-09 06:03 – 2020-08-09 06:03 – 002296320 _____ (Farbar) C:UsersRyanDownloadsFRST64.exe

2020-08-08 13:16 – 2020-08-10 05:44 – 000000000 ____D C:UsersRyanAppDataLocalElevatedDiagnostics

2020-08-07 10:48 – 2020-08-07 10:48 – 000002678 _____ C:WINDOWSsystem32TasksUSER_ESRV_SVC_QUEENCREEK

2020-08-07 09:11 – 2020-08-07 09:33 – 000000000 ____D C:ProgramDataSecTaskMan

2020-08-06 05:30 – 2020-08-06 05:30 – 000356363 _____ C:UsersRyanDownloads92c1339657dc2053236ef99d22a2bc14.webm

2020-08-05 02:41 – 2020-08-05 11:19 – 000000000 ____D C:KVRT_Data

2020-08-04 05:40 – 2020-08-04 06:40 – 000000000 ____D C:UsersRyanDownloadsPornMegaLoad.18.10.28.Korina.Kova.Busty.Enchantress.Korina.XXX.1080p.MP4-KTR[rarbg]

2020-08-04 05:02 – 2020-08-04 05:02 – 000002040 _____ C:ProgramDataMicrosoftWindowsStart MenuProgramsMalwarebytes.lnk

2020-08-04 05:02 – 2020-08-04 05:01 – 000019912 _____ (Malwarebytes) C:WINDOWSsystem32DriversMbamElam.sys

2020-08-04 02:42 – 2020-08-04 05:02 – 000248968 _____ (Malwarebytes) C:WINDOWSsystem32Driversmbamswissarmy.sys

2020-08-03 23:18 – 2020-08-03 23:39 – 000000000 ____D C:UsersRyanDownloadsDayWithAPornstar.20.07.29.Korina.Kova.Korinas.Hot.Fun.In.The.Sun.XXX.1080p.MP4-KTR[rarbg]

2020-08-02 03:23 – 2020-08-02 03:27 – 000000000 ____D C:UsersRyanDownloadsFile

2020-08-02 00:31 – 2020-08-02 00:32 – 257212934 _____ C:UsersRyanDownloadsBuffscale HS content 2020 2-10.rar

2020-07-30 19:05 – 2020-08-10 08:50 – 000000000 ____D C:WINDOWSsystem32TasksNorton Security Suite

2020-07-30 18:55 – 2020-07-30 18:55 – 000003400 _____ C:WINDOWSsystem32TasksNorton WSC Integration

2020-07-30 18:54 – 2020-07-30 18:54 – 000000000 ___RD C:ProgramDataMicrosoftWindowsStart MenuProgramsNorton Security Suite

2020-07-28 11:11 – 2020-07-28 11:11 – 005090368 _____ C:UsersRyanDownloads720P_4000K_249176131.mp4

2020-07-28 11:08 – 2020-07-28 11:08 – 003310695 _____ C:UsersRyanDownloads720P_4000K_273713311.mp4

2020-07-28 10:49 – 2020-07-28 10:49 – 024852623 _____ C:UsersRyanDownloads720P_4000K_129975651.mp4

2020-07-28 09:54 – 2020-07-28 09:54 – 024385824 _____ (Intel Corporation) C:WINDOWSsystem32libmfxhw64.dll

2020-07-28 09:54 – 2020-07-28 09:54 – 023040656 _____ (Intel Corporation) C:WINDOWSSysWOW64libmfxhw32.dll

2020-07-28 09:54 – 2020-07-28 09:54 – 000161376 _____ (Intel Corporation) C:WINDOWSsystem32intel_gfx_api-x64.dll

2020-07-28 09:54 – 2020-07-28 09:54 – 000136880 _____ (Intel Corporation) C:WINDOWSSysWOW64intel_gfx_api-x86.dll

2020-07-28 09:53 – 2020-07-28 09:53 – 026660760 _____ (Intel Corporation) C:WINDOWSsystem32mfxplugin64_hw.dll

2020-07-28 09:53 – 2020-07-28 09:53 – 013504408 _____ (Intel Corporation) C:WINDOWSSysWOW64mfxplugin32_hw.dll

2020-07-28 09:53 – 2020-07-28 09:53 – 001745776 _____ C:WINDOWSsystem32vulkaninfo-1-999-0-0-0.exe

2020-07-28 09:53 – 2020-07-28 09:53 – 001745776 _____ C:WINDOWSsystem32vulkaninfo.exe

2020-07-28 09:53 – 2020-07-28 09:53 – 001351536 _____ C:WINDOWSSysWOW64vulkaninfo-1-999-0-0-0.exe

2020-07-28 09:53 – 2020-07-28 09:53 – 001351536 _____ C:WINDOWSSysWOW64vulkaninfo.exe

2020-07-28 09:53 – 2020-07-28 09:53 – 001049304 _____ C:WINDOWSsystem32vulkan-1-999-0-0-0.dll

2020-07-28 09:53 – 2020-07-28 09:53 – 001049304 _____ C:WINDOWSsystem32vulkan-1.dll

2020-07-28 09:53 – 2020-07-28 09:53 – 000912600 _____ C:WINDOWSSysWOW64vulkan-1-999-0-0-0.dll

2020-07-28 09:53 – 2020-07-28 09:53 – 000912600 _____ C:WINDOWSSysWOW64vulkan-1.dll

2020-07-28 09:53 – 2020-07-28 09:53 – 000447384 _____ C:WINDOWSsystem32ze_loader.dll

2020-07-28 09:53 – 2020-07-28 09:53 – 000136600 _____ C:WINDOWSsystem32ze_validation_layer.dll

2020-07-28 09:53 – 2020-07-28 09:53 – 000119704 _____ (Khronos Group) C:WINDOWSsystem32OpenCL.dll

2020-07-28 09:53 – 2020-07-28 09:53 – 000104344 _____ (Khronos Group) C:WINDOWSSysWOW64OpenCL.dll

2020-07-23 02:59 – 2017-08-11 15:16 – 000000000 ____D C:UsersRyanDownloads[Supa]Tanktop1.1UpdateOnly

2020-07-23 00:28 – 2020-07-23 00:28 – 000000000 ____D C:UsersRyanAppDataLocalLowillusion_Koikatu

2020-07-22 21:27 – 2020-07-22 21:27 – 000000000 ____D C:UsersRyanAppDataRoaming.mono

2020-07-22 21:20 – 2020-07-22 21:20 – 000000000 ____D C:UsersRyanAppDataLocalLowillusion__Koikatu

2020-07-15 19:22 – 2020-07-15 19:22 – 000514560 _____ (Microsoft Corporation) C:WINDOWSsystem32WinBioDataModel.dll

2020-07-15 19:22 – 2020-07-15 19:22 – 000478208 _____ (Microsoft Corporation) C:WINDOWSsystem32Windows.Devices.Picker.dll

2020-07-15 19:22 – 2020-07-15 19:22 – 000441344 _____ (Microsoft Corporation) C:WINDOWSsystem32WalletService.dll

2020-07-15 19:22 – 2020-07-15 19:22 – 000392192 _____ (Microsoft Corporation) C:WINDOWSsystem32ConsoleLogon.dll

2020-07-15 19:22 – 2020-07-15 19:22 – 000351232 _____ (Microsoft Corporation) C:WINDOWSsystem32APHostService.dll

2020-07-15 19:22 – 2020-07-15 19:22 – 000338944 _____ (Microsoft Corporation) C:WINDOWSSysWOW64Windows.Devices.Picker.dll

2020-07-15 19:22 – 2020-07-15 19:22 – 000288256 _____ (Microsoft Corporation) C:WINDOWSSysWOW64ConsoleLogon.dll

2020-07-15 19:22 – 2020-07-15 19:22 – 000078848 _____ (Microsoft Corporation) C:WINDOWSsystem32WinBioDataModelOOBE.exe

2020-07-15 19:21 – 2020-07-15 19:21 – 026271744 _____ (Microsoft Corporation) C:WINDOWSsystem32edgehtml.dll

2020-07-15 19:21 – 2020-07-15 19:21 – 024264704 _____ (Microsoft Corporation) C:WINDOWSsystem32Hydrogen.dll

2020-07-15 19:21 – 2020-07-15 19:21 – 023433216 _____ (Microsoft Corporation) C:WINDOWSsystem32mshtml.dll

2020-07-15 19:21 – 2020-07-15 19:21 – 019868672 _____ (Microsoft Corporation) C:WINDOWSSysWOW64edgehtml.dll

2020-07-15 19:21 – 2020-07-15 19:21 – 018766336 _____ (Microsoft Corporation) C:WINDOWSsystem32HologramWorld.dll

2020-07-15 19:21 – 2020-07-15 19:21 – 018068992 _____ (Microsoft Corporation) C:WINDOWSSysWOW64mshtml.dll

2020-07-15 19:21 – 2020-07-15 19:21 – 008188928 _____ (Microsoft Corporation) C:WINDOWSsystem32mstscax.dll

2020-07-15 19:21 – 2020-07-15 19:21 – 007593472 _____ (Microsoft Corporation) C:WINDOWSsystem32ieframe.dll

2020-07-15 19:21 – 2020-07-15 19:21 – 007534160 _____ (Microsoft Corporation) C:WINDOWSsystem32Windows.Media.dll

2020-07-15 19:21 – 2020-07-15 19:21 – 007070208 _____ (Microsoft Corporation) C:WINDOWSSysWOW64mstscax.dll

2020-07-15 19:21 – 2020-07-15 19:21 – 006404608 _____ (Microsoft Corporation) C:WINDOWSSysWOW64ieframe.dll

2020-07-15 19:21 – 2020-07-15 19:21 – 005821952 _____ (Microsoft Corporation) C:WINDOWSSysWOW64Chakra.dll

2020-07-15 19:21 – 2020-07-15 19:21 – 005337504 _____ (Microsoft Corporation) C:WINDOWSSysWOW64Windows.Media.dll

2020-07-15 19:21 – 2020-07-15 19:21 – 004783328 _____ (Microsoft Corporation) C:WINDOWSsystem32mfcore.dll

2020-07-15 19:21 – 2020-07-15 19:21 – 003547280 _____ (Microsoft Corporation) C:WINDOWSSysWOW64mfcore.dll

2020-07-15 19:21 – 2020-07-15 19:21 – 002520048 _____ (Microsoft Corporation) C:WINDOWSsystem32msmpeg2vdec.dll

2020-07-15 19:21 – 2020-07-15 19:21 – 001956016 _____ (Microsoft Corporation) C:WINDOWSsystem32mfasfsrcsnk.dll

2020-07-15 19:21 – 2020-07-15 19:21 – 001352232 _____ (Microsoft Corporation) C:WINDOWSsystem32mfmpeg2srcsnk.dll

2020-07-15 19:21 – 2020-07-15 19:21 – 001337856 _____ (Microsoft Corporation) C:WINDOWSsystem32Windows.Media.Audio.dll

2020-07-15 19:21 – 2020-07-15 19:21 – 001312256 _____ (Microsoft Corporation) C:WINDOWSSysWOW64msjet40.dll

2020-07-15 19:21 – 2020-07-15 19:21 – 001301592 _____ (Microsoft Corporation) C:WINDOWSSysWOW64mfasfsrcsnk.dll

2020-07-15 19:21 – 2020-07-15 19:21 – 001246720 _____ (Microsoft Corporation) C:WINDOWSSysWOW64Windows.Media.Audio.dll

2020-07-15 19:21 – 2020-07-15 19:21 – 001087488 _____ (Microsoft Corporation) C:WINDOWSsystem32HoloSI.PCShell.dll

2020-07-15 19:21 – 2020-07-15 19:21 – 001014872 _____ (Microsoft Corporation) C:WINDOWSSysWOW64mfmpeg2srcsnk.dll

2020-07-15 19:21 – 2020-07-15 19:21 – 000991744 _____ (Microsoft Corporation) C:WINDOWSsystem32WebcamUi.dll

2020-07-15 19:21 – 2020-07-15 19:21 – 000942080 _____ (Microsoft Corporation) C:WINDOWSsystem32EdgeManager.dll

2020-07-15 19:21 – 2020-07-15 19:21 – 000843264 _____ (Microsoft Corporation) C:WINDOWSsystem32HolographicExtensions.dll

2020-07-15 19:21 – 2020-07-15 19:21 – 000814592 _____ (Microsoft Corporation) C:WINDOWSSysWOW64WebcamUi.dll

2020-07-15 19:21 – 2020-07-15 19:21 – 000804352 _____ (Microsoft Corporation) C:WINDOWSSysWOW64EdgeManager.dll

2020-07-15 19:21 – 2020-07-15 19:21 – 000539136 _____ (Microsoft Corporation) C:WINDOWSsystem32IESettingSync.exe

2020-07-15 19:21 – 2020-07-15 19:21 – 000453952 _____ (Microsoft Corporation) C:WINDOWSSysWOW64MSAudDecMFT.dll

2020-07-15 19:21 – 2020-07-15 19:21 – 000453632 _____ (Microsoft Corporation) C:WINDOWSsystem32fhsettingsprovider.dll

2020-07-15 19:21 – 2020-07-15 19:21 – 000423936 _____ (Microsoft Corporation) C:WINDOWSSysWOW64PlayToManager.dll

2020-07-15 19:21 – 2020-07-15 19:21 – 000423224 _____ (Microsoft Corporation) C:WINDOWSsystem32MSAudDecMFT.dll

2020-07-15 19:21 – 2020-07-15 19:21 – 000420864 _____ (Microsoft Corporation) C:WINDOWSsystem32MixedReality.Broker.dll

2020-07-15 19:21 – 2020-07-15 19:21 – 000419840 _____ (Microsoft Corporation) C:WINDOWSsystem32RDXTaskFactory.dll

2020-07-15 19:21 – 2020-07-15 19:21 – 000413208 _____ (Microsoft Corporation) C:WINDOWSsystem32tsmf.dll

2020-07-15 19:21 – 2020-07-15 19:21 – 000353792 _____ (Microsoft Corporation) C:WINDOWSSysWOW64msrd3x40.dll

2020-07-15 19:21 – 2020-07-15 19:21 – 000343992 _____ (Microsoft Corporation) C:WINDOWSSysWOW64tsmf.dll

2020-07-15 19:21 – 2020-07-15 19:21 – 000327168 _____ (Microsoft Corporation) C:WINDOWSSysWOW64upnphost.dll

2020-07-15 19:21 – 2020-07-15 19:21 – 000300032 _____ (Microsoft Corporation) C:WINDOWSsystem32CXHProvisioningServer.dll

2020-07-15 19:21 – 2020-07-15 19:21 – 000237056 _____ (Microsoft Corporation) C:WINDOWSsystem32HoloShellRuntime.dll

2020-07-15 19:21 – 2020-07-15 19:21 – 000208896 _____ (Microsoft Corporation) C:WINDOWSSysWOW64werui.dll

2020-07-15 19:21 – 2020-07-15 19:21 – 000203264 _____ (Microsoft Corporation) C:WINDOWSsystem32DiagSvc.dll

2020-07-15 19:21 – 2020-07-15 19:21 – 000189440 _____ (Microsoft Corporation) C:WINDOWSSysWOW64DWWIN.EXE

2020-07-15 19:21 – 2020-07-15 19:21 – 000180224 _____ (Microsoft Corporation) C:WINDOWSSysWOW64HoloShellRuntime.dll

2020-07-15 19:21 – 2020-07-15 19:21 – 000171520 _____ (Microsoft Corporation) C:WINDOWSSysWOW64dialclient.dll

2020-07-15 19:21 – 2020-07-15 19:21 – 000169472 _____ (Microsoft Corporation) C:WINDOWSsystem32SettingsHandlers_Clipboard.dll

2020-07-15 19:21 – 2020-07-15 19:21 – 000163840 _____ (Microsoft Corporation) C:WINDOWSsystem32PrintWSDAHost.dll

2020-07-15 19:21 – 2020-07-15 19:21 – 000142848 _____ (Microsoft Corporation) C:WINDOWSSysWOW64easwrt.dll

2020-07-15 19:21 – 2020-07-15 19:21 – 000127488 _____ (Microsoft Corporation) C:WINDOWSSysWOW64fdWSD.dll

2020-07-15 19:21 – 2020-07-15 19:21 – 000123392 _____ (Microsoft Corporation) C:WINDOWSSysWOW64PrintWSDAHost.dll

2020-07-15 19:21 – 2020-07-15 19:21 – 000070656 _____ (Microsoft Corporation) C:WINDOWSsystem32tsgqec.dll

2020-07-15 19:21 – 2020-07-15 19:21 – 000065024 _____ (Microsoft Corporation) C:WINDOWSsystem32iemigplugin.dll

2020-07-15 19:21 – 2020-07-15 19:21 – 000062976 _____ (Microsoft Corporation) C:WINDOWSSysWOW64iemigplugin.dll

2020-07-15 19:21 – 2020-07-15 19:21 – 000058368 _____ (Microsoft Corporation) C:WINDOWSSysWOW64udhisapi.dll

2020-07-15 19:21 – 2020-07-15 19:21 – 000057856 _____ (Microsoft Corporation) C:WINDOWSSysWOW64MiracastReceiverExt.dll

2020-07-15 19:21 – 2020-07-15 19:21 – 000054784 _____ (Microsoft Corporation) C:WINDOWSSysWOW64tsgqec.dll

2020-07-15 19:21 – 2020-07-15 19:21 – 000035328 _____ (Microsoft Corporation) C:WINDOWSSysWOW64upnpcont.exe

2020-07-15 19:21 – 2020-07-15 19:21 – 000030208 _____ (Microsoft Corporation) C:WINDOWSsystem32odbcconf.dll

2020-07-15 19:21 – 2020-07-15 19:21 – 000024064 _____ (Microsoft Corporation) C:WINDOWSSysWOW64odbcconf.dll

2020-07-15 19:20 – 2020-07-15 19:20 – 008892600 _____ (Microsoft Corporation) C:WINDOWSSysWOW64Windows.Media.Protection.PlayReady.dll

2020-07-15 19:20 – 2020-07-15 19:20 – 005964496 _____ (Microsoft Corporation) C:WINDOWSSysWOW64shell32.dll

2020-07-15 19:20 – 2020-07-15 19:20 – 001557824 _____ (Microsoft Corporation) C:WINDOWSsystem32hvix64.exe

2020-07-15 19:20 – 2020-07-15 19:20 – 001449280 _____ (Microsoft Corporation) C:WINDOWSSysWOW64dcomp.dll

2020-07-15 19:20 – 2020-07-15 19:20 – 001448448 _____ (Microsoft Corporation) C:WINDOWSSysWOW64GdiPlus.dll

2020-07-15 19:20 – 2020-07-15 19:20 – 001255744 _____ (Microsoft Corporation) C:WINDOWSsystem32hvax64.exe

2020-07-15 19:20 – 2020-07-15 19:20 – 001218560 _____ (Microsoft Corporation) C:WINDOWSsystem32sdengin2.dll

2020-07-15 19:20 – 2020-07-15 19:20 – 001090560 _____ (Microsoft Corporation) C:WINDOWSsystem32StorSvc.dll

2020-07-15 19:20 – 2020-07-15 19:20 – 001022976 _____ (Microsoft Corporation) C:WINDOWSsystem32CBDHSvc.dll

2020-07-15 19:20 – 2020-07-15 19:20 – 001008184 _____ (Microsoft Corporation) C:WINDOWSSysWOW64Windows.Devices.Sensors.dll

2020-07-15 19:20 – 2020-07-15 19:20 – 000945664 _____ (Microsoft Corporation) C:WINDOWSSysWOW64Windows.UI.Immersive.dll

2020-07-15 19:20 – 2020-07-15 19:20 – 000886272 _____ (Microsoft Corporation) C:WINDOWSSysWOW64gdi32full.dll

2020-07-15 19:20 – 2020-07-15 19:20 – 000872448 _____ (Microsoft Corporation) C:WINDOWSsystem32werconcpl.dll

2020-07-15 19:20 – 2020-07-15 19:20 – 000866304 _____ (Microsoft Corporation) C:WINDOWSSysWOW64rasapi32.dll

2020-07-15 19:20 – 2020-07-15 19:20 – 000801560 _____ (Microsoft Corporation) C:WINDOWSsystem32tcblaunch.exe

2020-07-15 19:20 – 2020-07-15 19:20 – 000760832 _____ (Microsoft Corporation) C:WINDOWSSysWOW64SettingSyncCore.dll

2020-07-15 19:20 – 2020-07-15 19:20 – 000705024 _____ (Microsoft Corporation) C:WINDOWSSysWOW64Windows.Internal.Management.dll

2020-07-15 19:20 – 2020-07-15 19:20 – 000696240 _____ (Microsoft Corporation) C:WINDOWSSysWOW64wer.dll

2020-07-15 19:20 – 2020-07-15 19:20 – 000681472 _____ (Microsoft Corporation) C:WINDOWSSysWOW64Windows.UI.Search.dll

2020-07-15 19:20 – 2020-07-15 19:20 – 000673976 _____ (Microsoft Corporation) C:WINDOWSSysWOW64fontdrvhost.exe

2020-07-15 19:20 – 2020-07-15 19:20 – 000617472 _____ (Microsoft Corporation) C:WINDOWSSysWOW64efswrt.dll

2020-07-15 19:20 – 2020-07-15 19:20 – 000612352 _____ (Microsoft Corporation) C:WINDOWSsystem32PlayToManager.dll

2020-07-15 19:20 – 2020-07-15 19:20 – 000606880 _____ (Microsoft Corporation) C:WINDOWSSysWOW64oleaut32.dll

2020-07-15 19:20 – 2020-07-15 19:20 – 000535552 _____ (Microsoft Corporation) C:WINDOWSSysWOW64vbscript.dll

2020-07-15 19:20 – 2020-07-15 19:20 – 000482616 _____ (Microsoft Corporation) C:WINDOWSSysWOW64WerFault.exe

2020-07-15 19:20 – 2020-07-15 19:20 – 000473088 _____ (Microsoft Corporation) C:WINDOWSSysWOW64CredProvDataModel.dll

2020-07-15 19:20 – 2020-07-15 19:20 – 000471040 _____ (Microsoft Corporation) C:WINDOWSsystem32upnphost.dll

2020-07-15 19:20 – 2020-07-15 19:20 – 000469504 _____ (Microsoft Corporation) C:WINDOWSSysWOW64schannel.dll

2020-07-15 19:20 – 2020-07-15 19:20 – 000466928 _____ (Microsoft Corporation) C:WINDOWSSysWOW64Windows.Media.MediaControl.dll

2020-07-15 19:20 – 2020-07-15 19:20 – 000443704 _____ (Microsoft Corporation) C:WINDOWSSysWOW64msv1_0.dll

2020-07-15 19:20 – 2020-07-15 19:20 – 000420936 _____ (Microsoft Corporation) C:WINDOWSSysWOW64aepic.dll

2020-07-15 19:20 – 2020-07-15 19:20 – 000409552 _____ (Microsoft Corporation) C:WINDOWSSysWOW64Faultrep.dll

2020-07-15 19:20 – 2020-07-15 19:20 – 000402944 _____ (Microsoft Corporation) C:WINDOWSSysWOW64edgeIso.dll

2020-07-15 19:20 – 2020-07-15 19:20 – 000379392 _____ (Microsoft Corporation) C:WINDOWSSysWOW64Windows.ApplicationModel.LockScreen.dll

2020-07-15 19:20 – 2020-07-15 19:20 – 000368640 _____ (Microsoft Corporation) C:WINDOWSSysWOW64Geolocation.dll

2020-07-15 19:20 – 2020-07-15 19:20 – 000355840 _____ (Microsoft Corporation) C:WINDOWSSysWOW64LockAppBroker.dll

2020-07-15 19:20 – 2020-07-15 19:20 – 000331264 _____ (Microsoft Corporation) C:WINDOWSSysWOW64AboveLockAppHost.dll

2020-07-15 19:20 – 2020-07-15 19:20 – 000328704 _____ (Microsoft Corporation) C:WINDOWSSysWOW64Windows.Graphics.Printing.Workflow.dll

2020-07-15 19:20 – 2020-07-15 19:20 – 000271872 _____ (Microsoft Corporation) C:WINDOWSSysWOW64credprovs.dll

2020-07-15 19:20 – 2020-07-15 19:20 – 000255488 _____ (Microsoft Corporation) C:WINDOWSSysWOW64Windows.UI.CredDialogController.dll

2020-07-15 19:20 – 2020-07-15 19:20 – 000247296 _____ (Microsoft Corporation) C:WINDOWSsystem32werui.dll

2020-07-15 19:20 – 2020-07-15 19:20 – 000245760 _____ (Microsoft Corporation) C:WINDOWSsystem32dialclient.dll

2020-07-15 19:20 – 2020-07-15 19:20 – 000234496 _____ (Microsoft Corporation) C:WINDOWSsystem32DWWIN.EXE

2020-07-15 19:20 – 2020-07-15 19:20 – 000221184 _____ (Microsoft Corporation) C:WINDOWSSysWOW64bthprops.cpl

2020-07-15 19:20 – 2020-07-15 19:20 – 000217912 _____ (Microsoft Corporation) C:WINDOWSsystem32tcbloader.dll

2020-07-15 19:20 – 2020-07-15 19:20 – 000216064 _____ (Microsoft Corporation) C:WINDOWSSysWOW64pku2u.dll

2020-07-15 19:20 – 2020-07-15 19:20 – 000201016 _____ (Microsoft Corporation) C:WINDOWSSysWOW64wermgr.exe

2020-07-15 19:20 – 2020-07-15 19:20 – 000195128 _____ (Microsoft Corporation) C:WINDOWSSysWOW64weretw.dll

2020-07-15 19:20 – 2020-07-15 19:20 – 000190048 _____ (Microsoft Corporation) C:WINDOWSSysWOW64logoncli.dll

2020-07-15 19:20 – 2020-07-15 19:20 – 000186880 _____ (Microsoft Corporation) C:WINDOWSSysWOW64wdigest.dll

2020-07-15 19:20 – 2020-07-15 19:20 – 000184832 _____ (Microsoft Corporation) C:WINDOWSsystem32dialserver.dll

2020-07-15 19:20 – 2020-07-15 19:20 – 000183296 _____ (Microsoft Corporation) C:WINDOWSsystem32easwrt.dll

2020-07-15 19:20 – 2020-07-15 19:20 – 000178176 _____ (Microsoft Corporation) C:WINDOWSSysWOW64intl.cpl

2020-07-15 19:20 – 2020-07-15 19:20 – 000161792 _____ (Microsoft Corporation) C:WINDOWSsystem32StorageUsage.dll

2020-07-15 19:20 – 2020-07-15 19:20 – 000157184 _____ (Microsoft Corporation) C:WINDOWSsystem32fdWSD.dll

2020-07-15 19:20 – 2020-07-15 19:20 – 000151864 _____ (Microsoft Corporation) C:WINDOWSSysWOW64WerFaultSecure.exe

2020-07-15 19:20 – 2020-07-15 19:20 – 000138752 _____ (Microsoft Corporation) C:WINDOWSSysWOW64PrintWorkflowService.dll

2020-07-15 19:20 – 2020-07-15 19:20 – 000126464 _____ (Microsoft Corporation) C:WINDOWSsystem32wercplsupport.dll

2020-07-15 19:20 – 2020-07-15 19:20 – 000117048 _____ (Microsoft Corporation) C:WINDOWSsystem32hvloader.dll

2020-07-15 19:20 – 2020-07-15 19:20 – 000099328 _____ (Microsoft Corporation) C:WINDOWSSysWOW64fontsub.dll

2020-07-15 19:20 – 2020-07-15 19:20 – 000096256 _____ (Microsoft Corporation) C:WINDOWSSysWOW64EaseOfAccessDialog.exe

2020-07-15 19:20 – 2020-07-15 19:20 – 000095032 _____ (Microsoft Corporation) C:WINDOWSsystem32Drivershvservice.sys

2020-07-15 19:20 – 2020-07-15 19:20 – 000083456 _____ (Microsoft Corporation) C:WINDOWSSysWOW64usoapi.dll

2020-07-15 19:20 – 2020-07-15 19:20 – 000081920 _____ (Microsoft Corporation) C:WINDOWSSysWOW64sethc.exe

2020-07-15 19:20 – 2020-07-15 19:20 – 000073216 _____ (Microsoft Corporation) C:WINDOWSsystem32MiracastReceiverExt.dll

2020-07-15 19:20 – 2020-07-15 19:20 – 000070144 _____ (Microsoft Corporation) C:WINDOWSsystem32udhisapi.dll

2020-07-15 19:20 – 2020-07-15 19:20 – 000066560 _____ (Microsoft Corporation) C:WINDOWSSysWOW64keyiso.dll

2020-07-15 19:20 – 2020-07-15 19:20 – 000063488 _____ (Microsoft Corporation) C:WINDOWSSysWOW64Print.Workflow.Source.dll

2020-07-15 19:20 – 2020-07-15 19:20 – 000046080 _____ (Microsoft Corporation) C:WINDOWSSysWOW64mf3216.dll

2020-07-15 19:20 – 2020-07-15 19:20 – 000042496 _____ (Microsoft Corporation) C:WINDOWSsystem32upnpcont.exe

2020-07-15 19:20 – 2020-07-15 19:20 – 000038912 _____ (Microsoft Corporation) C:WINDOWSSysWOW64werdiagcontroller.dll

2020-07-15 19:20 – 2020-07-15 19:20 – 000021304 _____ (Microsoft Corporation) C:WINDOWSsystem32kdhvcom.dll

2020-07-15 19:20 – 2020-07-15 19:20 – 000020632 _____ (Microsoft Corporation) C:WINDOWSSysWOW64WerEnc.dll

2020-07-15 19:20 – 2020-07-15 19:20 – 000016896 _____ (Microsoft Corporation) C:WINDOWSSysWOW64PrintWorkflowProxy.dll

2020-07-15 19:20 – 2020-07-15 19:20 – 000013824 _____ (Microsoft Corporation) C:WINDOWSSysWOW64KBDJPN.DLL

2020-07-15 19:20 – 2020-07-15 19:20 – 000012288 _____ (Microsoft Corporation) C:WINDOWSSysWOW64Windows.Graphics.Printing.Workflow.Native.dll

2020-07-15 19:20 – 2020-07-15 19:20 – 000011776 _____ (Microsoft Corporation) C:WINDOWSSysWOW64dciman32.dll

2020-07-15 19:20 – 2020-07-15 19:20 – 000009269 _____ C:WINDOWSsystem32DrtmAuthTxt.wim

2020-07-15 19:20 – 2020-07-15 19:20 – 000007680 _____ (Microsoft Corporation) C:WINDOWSSysWOW64kbd106n.dll

2020-07-15 19:20 – 2020-07-15 19:20 – 000007680 _____ (Microsoft Corporation) C:WINDOWSSysWOW64kbd106.dll

2020-07-15 19:20 – 2020-07-15 19:20 – 000007680 _____ (Microsoft Corporation) C:WINDOWSSysWOW64kbd101.DLL

2020-07-15 19:20 – 2020-07-15 19:20 – 000007168 _____ (Microsoft Corporation) C:WINDOWSSysWOW64msimg32.dll

2020-07-15 19:20 – 2020-07-15 19:20 – 000002560 _____ (Microsoft Corporation) C:WINDOWSSysWOW64lpk.dll

2020-07-15 19:19 – 2020-07-15 19:20 – 001257472 _____ (Microsoft Corporation) C:WINDOWSSysWOW64Windows.Media.Speech.dll

2020-07-15 19:19 – 2020-07-15 19:19 – 006920192 _____ (Microsoft Corporation) C:WINDOWSSysWOW64BingMaps.dll

2020-07-15 19:19 – 2020-07-15 19:19 – 006356008 _____ (Microsoft Corporation) C:WINDOWSSysWOW64windows.storage.dll

2020-07-15 19:19 – 2020-07-15 19:19 – 006029312 _____ (Microsoft Corporation) C:WINDOWSSysWOW64Windows.Data.Pdf.dll

2020-07-15 19:19 – 2020-07-15 19:19 – 003812304 _____ (Microsoft Corporation) C:WINDOWSSysWOW64OneCoreUAPCommonProxyStub.dll

2020-07-15 19:19 – 2020-07-15 19:19 – 002744320 _____ (Microsoft Corporation) C:WINDOWSSysWOW64win32kfull.sys

2020-07-15 19:19 – 2020-07-15 19:19 – 002104320 _____ (Microsoft Corporation) C:WINDOWSSysWOW64DWrite.dll

2020-07-15 19:19 – 2020-07-15 19:19 – 001952392 _____ (Microsoft Corporation) C:WINDOWSSysWOW64msxml6.dll

2020-07-15 19:19 – 2020-07-15 19:19 – 001816576 _____ (Microsoft Corporation) C:WINDOWSSysWOW64InstallService.dll

2020-07-15 19:19 – 2020-07-15 19:19 – 001668904 _____ (Microsoft Corporation) C:WINDOWSSysWOW64Windows.ApplicationModel.Store.dll

2020-07-15 19:19 – 2020-07-15 19:19 – 001654824 _____ (Microsoft Corporation) C:WINDOWSSysWOW64user32.dll

2020-07-15 19:19 – 2020-07-15 19:19 – 001640888 _____ (Microsoft Corporation) C:WINDOWSSysWOW64twinapi.appcore.dll

2020-07-15 19:19 – 2020-07-15 19:19 – 001606656 _____ (Microsoft Corporation) C:WINDOWSSysWOW64Windows.Devices.Bluetooth.dll

2020-07-15 19:19 – 2020-07-15 19:19 – 001588224 _____ (Microsoft Corporation) C:WINDOWSSysWOW64Windows.Devices.Perception.dll

2020-07-15 19:19 – 2020-07-15 19:19 – 001550336 _____ (Microsoft Corporation) C:WINDOWSSysWOW64Windows.Graphics.Printing.3D.dll

2020-07-15 19:19 – 2020-07-15 19:19 – 001509736 _____ (Microsoft Corporation) C:WINDOWSSysWOW64WindowsCodecs.dll

2020-07-15 19:19 – 2020-07-15 19:19 – 001474048 _____ (Microsoft Corporation) C:WINDOWSSysWOW64Windows.Devices.PointOfService.dll

2020-07-15 19:19 – 2020-07-15 19:19 – 001374720 _____ (Microsoft Corporation) C:WINDOWSSysWOW64cdprt.dll

2020-07-15 19:19 – 2020-07-15 19:19 – 001315328 _____ (Microsoft Corporation) C:WINDOWSSysWOW64Windows.Globalization.dll

2020-07-15 19:19 – 2020-07-15 19:19 – 001247232 _____ (Microsoft Corporation) C:WINDOWSSysWOW64Windows.Media.FaceAnalysis.dll

2020-07-15 19:19 – 2020-07-15 19:19 – 001041408 _____ (Microsoft Corporation) C:WINDOWSSysWOW64wpnapps.dll

2020-07-15 19:19 – 2020-07-15 19:19 – 000966872 _____ (Microsoft Corporation) C:WINDOWSSysWOW64InputHost.dll

2020-07-15 19:19 – 2020-07-15 19:19 – 000957952 _____ (Microsoft Corporation) C:WINDOWSSysWOW64Windows.Networking.BackgroundTransfer.dll

2020-07-15 19:19 – 2020-07-15 19:19 – 000933176 _____ (Microsoft Corporation) C:WINDOWSSysWOW64CloudExperienceHostCommon.dll

2020-07-15 19:19 – 2020-07-15 19:19 – 000912896 _____ (Microsoft Corporation) C:WINDOWSSysWOW64MiracastReceiver.dll

2020-07-15 19:19 – 2020-07-15 19:19 – 000903168 _____ (Microsoft Corporation) C:WINDOWSSysWOW64MbaeApiPublic.dll

2020-07-15 19:19 – 2020-07-15 19:19 – 000877056 _____ (Microsoft Corporation) C:WINDOWSSysWOW64ShareHost.dll

2020-07-15 19:19 – 2020-07-15 19:19 – 000798720 _____ (Microsoft Corporation) C:WINDOWSSysWOW64kerberos.dll

2020-07-15 19:19 – 2020-07-15 19:19 – 000779360 _____ (Microsoft Corporation) C:WINDOWSSysWOW64MrmCoreR.dll

2020-07-15 19:19 – 2020-07-15 19:19 – 000775768 _____ (Microsoft Corporation) C:WINDOWSSysWOW64AppContracts.dll

2020-07-15 19:19 – 2020-07-15 19:19 – 000774456 _____ (Microsoft Corporation) C:WINDOWSSysWOW64Windows.Services.TargetedContent.dll

2020-07-15 19:19 – 2020-07-15 19:19 – 000758784 _____ (Microsoft Corporation) C:WINDOWSSysWOW64Windows.Security.Authentication.OnlineId.dll

2020-07-15 19:19 – 2020-07-15 19:19 – 000721024 _____ (Microsoft Corporation) C:WINDOWSSysWOW64Windows.ApplicationModel.dll

2020-07-15 19:19 – 2020-07-15 19:19 – 000720896 _____ (Microsoft Corporation) C:WINDOWSSysWOW64Windows.AccountsControl.dll

2020-07-15 19:19 – 2020-07-15 19:19 – 000701952 _____ (Microsoft Corporation) C:WINDOWSSysWOW64Windows.UI.Core.TextInput.dll

2020-07-15 19:19 – 2020-07-15 19:19 – 000689152 _____ (Microsoft Corporation) C:WINDOWSSysWOW64Windows.Media.Ocr.dll

2020-07-15 19:19 – 2020-07-15 19:19 – 000651776 _____ (Microsoft Corporation) C:WINDOWSSysWOW64ActivationManager.dll

2020-07-15 19:19 – 2020-07-15 19:19 – 000623392 _____ (Microsoft Corporation) C:WINDOWSSysWOW64Windows.Perception.Stub.dll

2020-07-15 19:19 – 2020-07-15 19:19 – 000595512 _____ (Microsoft Corporation) C:WINDOWSSysWOW64windows.applicationmodel.datatransfer.dll

2020-07-15 19:19 – 2020-07-15 19:19 – 000590848 _____ (Microsoft Corporation) C:WINDOWSSysWOW64Windows.Graphics.Printing.dll

2020-07-15 19:19 – 2020-07-15 19:19 – 000568320 _____ (Microsoft Corporation) C:WINDOWSSysWOW64Windows.Gaming.Input.dll

2020-07-15 19:19 – 2020-07-15 19:19 – 000563712 _____ (Microsoft Corporation) C:WINDOWSSysWOW64Windows.Media.Import.dll

2020-07-15 19:19 – 2020-07-15 19:19 – 000546456 _____ (Microsoft Corporation) C:WINDOWSSysWOW64SHCore.dll

2020-07-15 19:19 – 2020-07-15 19:19 – 000540672 _____ (Microsoft Corporation) C:WINDOWSSysWOW64Windows.Devices.SmartCards.dll

2020-07-15 19:19 – 2020-07-15 19:19 – 000523720 _____ (Microsoft Corporation) C:WINDOWSSysWOW64StructuredQuery.dll

2020-07-15 19:19 – 2020-07-15 19:19 – 000520192 _____ (Microsoft Corporation) C:WINDOWSSysWOW64Windows.System.Launcher.dll

2020-07-15 19:19 – 2020-07-15 19:19 – 000501248 _____ (Microsoft Corporation) C:WINDOWSSysWOW64twinui.appcore.dll

2020-07-15 19:19 – 2020-07-15 19:19 – 000455168 _____ C:WINDOWSSysWOW64WindowManagementAPI.dll

2020-07-15 19:19 – 2020-07-15 19:19 – 000445440 _____ (Microsoft Corporation) C:WINDOWSSysWOW64Windows.Devices.AllJoyn.dll

2020-07-15 19:19 – 2020-07-15 19:19 – 000433152 _____ (Microsoft Corporation) C:WINDOWSSysWOW64TileDataRepository.dll

2020-07-15 19:19 – 2020-07-15 19:19 – 000424448 _____ (Microsoft Corporation) C:WINDOWSSysWOW64Windows.Graphics.dll

2020-07-15 19:19 – 2020-07-15 19:19 – 000412672 _____ (Microsoft Corporation) C:WINDOWSSysWOW64Windows.Devices.SmartCards.Phone.dll

2020-07-15 19:19 – 2020-07-15 19:19 – 000409088 _____ (Microsoft Corporation) C:WINDOWSSysWOW64Windows.Payments.dll

2020-07-15 19:19 – 2020-07-15 19:19 – 000407504 _____ (Microsoft Corporation) C:WINDOWSSysWOW64Windows.Devices.Enumeration.dll

2020-07-15 19:19 – 2020-07-15 19:19 – 000388096 _____ (Microsoft Corporation) C:WINDOWSSysWOW64Windows.Devices.LowLevel.dll

2020-07-15 19:19 – 2020-07-15 19:19 – 000373760 _____ (Microsoft Corporation) C:WINDOWSSysWOW64MicrosoftAccountWAMExtension.dll

2020-07-15 19:19 – 2020-07-15 19:19 – 000355328 _____ (Microsoft Corporation) C:WINDOWSSysWOW64RTMediaFrame.dll

2020-07-15 19:19 – 2020-07-15 19:19 – 000329728 _____ (Microsoft Corporation) C:WINDOWSSysWOW64win32k.sys

2020-07-15 19:19 – 2020-07-15 19:19 – 000311920 _____ (Microsoft Corporation) C:WINDOWSSysWOW64Windows.Storage.ApplicationData.dll

2020-07-15 19:19 – 2020-07-15 19:19 – 000304128 _____ (Microsoft Corporation) C:WINDOWSSysWOW64wpnclient.dll

2020-07-15 19:19 – 2020-07-15 19:19 – 000296448 _____ (Microsoft Corporation) C:WINDOWSSysWOW64Windows.System.Diagnostics.dll

2020-07-15 19:19 – 2020-07-15 19:19 – 000290816 _____ (Microsoft Corporation) C:WINDOWSSysWOW64Windows.Gaming.Preview.dll

2020-07-15 19:19 – 2020-07-15 19:19 – 000281088 _____ (Microsoft Corporation) C:WINDOWSSysWOW64Windows.Devices.Usb.dll

2020-07-15 19:19 – 2020-07-15 19:19 – 000280064 _____ (Microsoft Corporation) C:WINDOWSSysWOW64Windows.Networking.NetworkOperators.ESim.dll

2020-07-15 19:19 – 2020-07-15 19:19 – 000277504 _____ (Microsoft Corporation) C:WINDOWSSysWOW64AppxAllUserStore.dll

2020-07-15 19:19 – 2020-07-15 19:19 – 000276992 _____ (Microsoft Corporation) C:WINDOWSSysWOW64Windows.Devices.Lights.dll

2020-07-15 19:19 – 2020-07-15 19:19 – 000276480 _____ (Microsoft Corporation) C:WINDOWSSysWOW64PickerPlatform.dll

2020-07-15 19:19 – 2020-07-15 19:19 – 000215040 _____ (Microsoft Corporation) C:WINDOWSSysWOW64Windows.Internal.Devices.Sensors.dll

2020-07-15 19:19 – 2020-07-15 19:19 – 000191488 _____ (Microsoft Corporation) C:WINDOWSSysWOW64Windows.Security.Authentication.Identity.Provider.dll

2020-07-15 19:19 – 2020-07-15 19:19 – 000189952 _____ (Microsoft Corporation) C:WINDOWSSysWOW64Windows.Devices.HumanInterfaceDevice.dll

2020-07-15 19:19 – 2020-07-15 19:19 – 000183296 _____ (Microsoft Corporation) C:WINDOWSSysWOW64Windows.Internal.Graphics.Display.DisplayColorManagement.dll

2020-07-15 19:19 – 2020-07-15 19:19 – 000179000 _____ (Microsoft Corporation) C:WINDOWSSysWOW64Windows.Management.Workplace.dll

2020-07-15 19:19 – 2020-07-15 19:19 – 000164864 _____ (Microsoft Corporation) C:WINDOWSSysWOW64CapabilityAccessManagerClient.dll

2020-07-15 19:19 – 2020-07-15 19:19 – 000163208 _____ (Microsoft Corporation) C:WINDOWSSysWOW64coreglobconfig.dll

2020-07-15 19:19 – 2020-07-15 19:19 – 000162816 _____ (Microsoft Corporation) C:WINDOWSSysWOW64UserDeviceRegistration.dll

2020-07-15 19:19 – 2020-07-15 19:19 – 000160768 _____ (Microsoft Corporation) C:WINDOWSSysWOW64Windows.ApplicationModel.Core.dll

2020-07-15 19:19 – 2020-07-15 19:19 – 000155136 _____ (Microsoft Corporation) C:WINDOWSSysWOW64ErrorDetails.dll

2020-07-15 19:19 – 2020-07-15 19:19 – 000151552 _____ (Microsoft Corporation) C:WINDOWSSysWOW64useractivitybroker.dll

2020-07-15 19:19 – 2020-07-15 19:19 – 000139776 _____ (Microsoft Corporation) C:WINDOWSSysWOW64Windows.Internal.Graphics.Display.DisplayEnhancementManagement.dll

2020-07-15 19:19 – 2020-07-15 19:19 – 000135168 _____ (Microsoft Corporation) C:WINDOWSSysWOW64AppExtension.dll

2020-07-15 19:19 – 2020-07-15 19:19 – 000133632 _____ (Microsoft Corporation) C:WINDOWSSysWOW64Windows.Energy.dll

2020-07-15 19:19 – 2020-07-15 19:19 – 000114688 _____ (Microsoft Corporation) C:WINDOWSSysWOW64AppointmentActivation.dll

2020-07-15 19:19 – 2020-07-15 19:19 – 000108032 _____ (Microsoft Corporation) C:WINDOWSSysWOW64Windows.Devices.SerialCommunication.dll

2020-07-15 19:19 – 2020-07-15 19:19 – 000094208 _____ (Microsoft Corporation) C:WINDOWSSysWOW64CameraCaptureUI.dll

2020-07-15 19:19 – 2020-07-15 19:19 – 000092952 _____ (Microsoft Corporation) C:WINDOWSSysWOW64win32u.dll

2020-07-15 19:19 – 2020-07-15 19:19 – 000086784 _____ (Microsoft Corporation) C:WINDOWSSysWOW64Windows.Security.Credentials.UI.CredentialPicker.dll

2020-07-15 19:19 – 2020-07-15 19:19 – 000074752 _____ (Microsoft Corporation) C:WINDOWSSysWOW64DiagnosticInvoker.dll

2020-07-15 19:19 – 2020-07-15 19:19 – 000066048 _____ (Microsoft Corporation) C:WINDOWSSysWOW64SystemUWPLauncher.exe

2020-07-15 19:19 – 2020-07-15 19:19 – 000061752 _____ (Microsoft Corporation) C:WINDOWSSysWOW64GameInput.dll

2020-07-15 19:19 – 2020-07-15 19:19 – 000052664 _____ (Microsoft Corporation) C:WINDOWSSysWOW64ResourcePolicyClient.dll

2020-07-15 19:19 – 2020-07-15 19:19 – 000002560 _____ (Microsoft Corporation) C:WINDOWSSysWOW64msxml6r.dll

2020-07-15 19:18 – 2020-07-15 19:19 – 014754816 _____ (Microsoft Corporation) C:WINDOWSSysWOW64Windows.UI.Xaml.dll

2020-07-15 19:18 – 2020-07-15 19:18 – 010922808 _____ (Microsoft Corporation) C:WINDOWSsystem32ntoskrnl.exe

2020-07-15 19:18 – 2020-07-15 19:18 – 007593544 _____ (Microsoft Corporation) C:WINDOWSsystem32shell32.dll

2020-07-15 19:18 – 2020-07-15 19:18 – 004734976 _____ (Microsoft Corporation) C:WINDOWSSysWOW64twinui.dll

2020-07-15 19:18 – 2020-07-15 19:18 – 004629328 _____ (Microsoft Corporation) C:WINDOWSsystem32sppsvc.exe

2020-07-15 19:18 – 2020-07-15 19:18 – 003925856 _____ (Microsoft Corporation) C:WINDOWSSysWOW64explorer.exe

2020-07-15 19:18 – 2020-07-15 19:18 – 003906048 _____ (Microsoft Corporation) C:WINDOWSsystem32SettingsHandlers_nt.dll

2020-07-15 19:18 – 2020-07-15 19:18 – 003778560 _____ (Microsoft Corporation) C:WINDOWSsystem32diagtrack.dll

2020-07-15 19:18 – 2020-07-15 19:18 – 002918216 _____ (Microsoft Corporation) C:WINDOWSsystem32KernelBase.dll

2020-07-15 19:18 – 2020-07-15 19:18 – 002568192 _____ (Microsoft Corporation) C:WINDOWSsystem32WebRuntimeManager.dll

2020-07-15 19:18 – 2020-07-15 19:18 – 002177528 _____ (Microsoft Corporation) C:WINDOWSSysWOW64KernelBase.dll

2020-07-15 19:18 – 2020-07-15 19:18 – 002026496 _____ (Microsoft Corporation) C:WINDOWSsystem32LocationFramework.dll

2020-07-15 19:18 – 2020-07-15 19:18 – 001710080 _____ (Microsoft Corporation) C:WINDOWSsystem32GdiPlus.dll

2020-07-15 19:18 – 2020-07-15 19:18 – 001641472 _____ (Microsoft Corporation) C:WINDOWSsystem32lsasrv.dll

2020-07-15 19:18 – 2020-07-15 19:18 – 001477632 _____ (Microsoft Corporation) C:WINDOWSsystem32usermgr.dll

2020-07-15 19:18 – 2020-07-15 19:18 – 001314120 _____ (Microsoft Corporation) C:WINDOWSSysWOW64ContentDeliveryManager.Utilities.dll

2020-07-15 19:18 – 2020-07-15 19:18 – 001303040 _____ (Microsoft Corporation) C:WINDOWSSysWOW64Wpc.dll

2020-07-15 19:18 – 2020-07-15 19:18 – 001286560 _____ (Microsoft Corporation) C:WINDOWSsystem32Windows.Devices.Sensors.dll

2020-07-15 19:18 – 2020-07-15 19:18 – 001253888 _____ (Microsoft Corporation) C:WINDOWSsystem32Windows.UI.Immersive.dll

2020-07-15 19:18 – 2020-07-15 19:18 – 001239552 _____ (Microsoft Corporation) C:WINDOWSSysWOW64TokenBroker.dll

2020-07-15 19:18 – 2020-07-15 19:18 – 001126472 _____ (Microsoft Corporation) C:WINDOWSsystem32msctf.dll

2020-07-15 19:18 – 2020-07-15 19:18 – 001125376 _____ (Microsoft Corporation) C:WINDOWSsystem32SettingSyncCore.dll

2020-07-15 19:18 – 2020-07-15 19:18 – 001071224 _____ (Microsoft Corporation) C:WINDOWSsystem32gdi32full.dll

2020-07-15 19:18 – 2020-07-15 19:18 – 001005056 _____ (Microsoft Corporation) C:WINDOWSsystem32Windows.Internal.Management.dll

2020-07-15 19:18 – 2020-07-15 19:18 – 001001472 _____ (Microsoft Corporation) C:WINDOWSSysWOW64Windows.Security.Authentication.Web.Core.dll

2020-07-15 19:18 – 2020-07-15 19:18 – 000970752 _____ (Microsoft Corporation) C:WINDOWSsystem32rasapi32.dll

2020-07-15 19:18 – 2020-07-15 19:18 – 000909312 _____ (Microsoft Corporation) C:WINDOWSsystem32Windows.UI.Search.dll

2020-07-15 19:18 – 2020-07-15 19:18 – 000889384 _____ (Microsoft Corporation) C:WINDOWSsystem32Windows.Internal.Shell.Broker.dll

2020-07-15 19:18 – 2020-07-15 19:18 – 000887296 _____ (Microsoft Corporation) C:WINDOWSsystem32MdmDiagnostics.dll

2020-07-15 19:18 – 2020-07-15 19:18 – 000885760 _____ (Microsoft Corporation) C:WINDOWSsystem32efswrt.dll

2020-07-15 19:18 – 2020-07-15 19:18 – 000881112 _____ (Microsoft Corporation) C:WINDOWSsystem32wer.dll

2020-07-15 19:18 – 2020-07-15 19:18 – 000876544 _____ (Microsoft Corporation) C:WINDOWSsystem32LogonController.dll

2020-07-15 19:18 – 2020-07-15 19:18 – 000868352 _____ (Microsoft Corporation) C:WINDOWSsystem32netprofmsvc.dll

2020-07-15 19:18 – 2020-07-15 19:18 – 000856328 _____ (Microsoft Corporation) C:WINDOWSSysWOW64msctf.dll

2020-07-15 19:18 – 2020-07-15 19:18 – 000831016 _____ (Microsoft Corporation) C:WINDOWSsystem32oleaut32.dll

2020-07-15 19:18 – 2020-07-15 19:18 – 000824328 _____ (Microsoft Corporation) C:WINDOWSsystem32fontdrvhost.exe

2020-07-15 19:18 – 2020-07-15 19:18 – 000748360 _____ (Microsoft Corporation) C:WINDOWSsystem32LicensingWinRT.dll

2020-07-15 19:18 – 2020-07-15 19:18 – 000687616 _____ (Microsoft Corporation) C:WINDOWSsystem32LockController.dll

2020-07-15 19:18 – 2020-07-15 19:18 – 000640000 _____ (Microsoft Corporation) C:WINDOWSSysWOW64agentactivationruntimewindows.dll

2020-07-15 19:18 – 2020-07-15 19:18 – 000634680 _____ (Microsoft Corporation) C:WINDOWSSysWOW64LicensingWinRT.dll

2020-07-15 19:18 – 2020-07-15 19:18 – 000633856 _____ (Microsoft Corporation) C:WINDOWSSysWOW64agentactivationruntime.dll

2020-07-15 19:18 – 2020-07-15 19:18 – 000623960 _____ (Microsoft Corporation) C:WINDOWSsystem32sechost.dll

2020-07-15 19:18 – 2020-07-15 19:18 – 000619520 _____ (Microsoft Corporation) C:WINDOWSsystem32CredProvDataModel.dll

2020-07-15 19:18 – 2020-07-15 19:18 – 000614912 _____ (Microsoft Corporation) C:WINDOWSSysWOW64Windows.ApplicationModel.ConversationalAgent.dll

2020-07-15 19:18 – 2020-07-15 19:18 – 000608256 _____ (Microsoft Corporation) C:WINDOWSsystem32sppcext.dll

2020-07-15 19:18 – 2020-07-15 19:18 – 000607744 _____ (Microsoft Corporation) C:WINDOWSsystem32vbscript.dll

2020-07-15 19:18 – 2020-07-15 19:18 – 000568632 _____ (Microsoft Corporation) C:WINDOWSsystem32WerFault.exe

2020-07-15 19:18 – 2020-07-15 19:18 – 000566784 _____ (Microsoft Corporation) C:WINDOWSsystem32schannel.dll

2020-07-15 19:18 – 2020-07-15 19:18 – 000555744 _____ (Microsoft Corporation) C:WINDOWSsystem32aepic.dll

2020-07-15 19:18 – 2020-07-15 19:18 – 000551424 _____ (Microsoft Corporation) C:WINDOWSsystem32Windows.Cortana.Desktop.dll

2020-07-15 19:18 – 2020-07-15 19:18 – 000546816 _____ (Microsoft Corporation) C:WINDOWSSysWOW64sppcext.dll

2020-07-15 19:18 – 2020-07-15 19:18 – 000539960 _____ (Microsoft Corporation) C:WINDOWSsystem32msv1_0.dll

2020-07-15 19:18 – 2020-07-15 19:18 – 000538624 _____ (Microsoft Corporation) C:WINDOWSsystem32InputSwitch.dll

2020-07-15 19:18 – 2020-07-15 19:18 – 000524800 _____ (Microsoft Corporation) C:WINDOWSsystem32ncsi.dll

2020-07-15 19:18 – 2020-07-15 19:18 – 000512512 _____ (Microsoft Corporation) C:WINDOWSSysWOW64twinapi.dll

2020-07-15 19:18 – 2020-07-15 19:18 – 000496128 _____ (Microsoft Corporation) C:WINDOWSsystem32Windows.ApplicationModel.LockScreen.dll

2020-07-15 19:18 – 2020-07-15 19:18 – 000487936 _____ (Microsoft Corporation) C:WINDOWSsystem32Geolocation.dll

2020-07-15 19:18 – 2020-07-15 19:18 – 000487552 _____ (Microsoft Corporation) C:WINDOWSsystem32Faultrep.dll

2020-07-15 19:18 – 2020-07-15 19:18 – 000480768 _____ (Microsoft Corporation) C:WINDOWSsystem32profsvc.dll

2020-07-15 19:18 – 2020-07-15 19:18 – 000476160 _____ (Microsoft Corporation) C:WINDOWSsystem32Windows.Graphics.Printing.Workflow.dll

2020-07-15 19:18 – 2020-07-15 19:18 – 000475704 _____ (Microsoft Corporation) C:WINDOWSSysWOW64sechost.dll

2020-07-15 19:18 – 2020-07-15 19:18 – 000457728 _____ (Microsoft Corporation) C:WINDOWSsystem32LockAppBroker.dll

2020-07-15 19:18 – 2020-07-15 19:18 – 000456192 _____ (Microsoft Corporation) C:WINDOWSsystem32LockHostingFramework.dll

2020-07-15 19:18 – 2020-07-15 19:18 – 000447488 _____ (Microsoft Corporation) C:WINDOWSsystem32edgeIso.dll

2020-07-15 19:18 – 2020-07-15 19:18 – 000429056 _____ (Microsoft Corporation) C:WINDOWSSysWOW64InputSwitch.dll

2020-07-15 19:18 – 2020-07-15 19:18 – 000418816 _____ (Microsoft Corporation) C:WINDOWSsystem32AboveLockAppHost.dll

2020-07-15 19:18 – 2020-07-15 19:18 – 000395600 _____ (Microsoft Corporation) C:WINDOWSSysWOW64Windows.Media.Devices.dll

2020-07-15 19:18 – 2020-07-15 19:18 – 000388608 _____ (Microsoft Corporation) C:WINDOWSsystem32nlasvc.dll

2020-07-15 19:18 – 2020-07-15 19:18 – 000380416 _____ (Microsoft Corporation) C:WINDOWSsystem32credprovs.dll

2020-07-15 19:18 – 2020-07-15 19:18 – 000373760 _____ (Microsoft Corporation) C:WINDOWSSysWOW64CoreShellAPI.dll

2020-07-15 19:18 – 2020-07-15 19:18 – 000360960 _____ (Microsoft Corporation) C:WINDOWSSysWOW64Windows.Devices.WiFiDirect.dll

2020-07-15 19:18 – 2020-07-15 19:18 – 000335360 _____ (Microsoft Corporation) C:WINDOWSSysWOW64AarSvc.dll

2020-07-15 19:18 – 2020-07-15 19:18 – 000323584 _____ (Microsoft Corporation) C:WINDOWSsystem32Windows.UI.CredDialogController.dll

2020-07-15 19:18 – 2020-07-15 19:18 – 000317952 _____ (Microsoft Corporation) C:WINDOWSSysWOW64Windows.Devices.Midi.dll

2020-07-15 19:18 – 2020-07-15 19:18 – 000313152 _____ (Microsoft Corporation) C:WINDOWSSysWOW64SystemSettings.DataModel.dll

2020-07-15 19:18 – 2020-07-15 19:18 – 000273920 _____ (Microsoft Corporation) C:WINDOWSsystem32pku2u.dll

2020-07-15 19:18 – 2020-07-15 19:18 – 000260288 _____ (Microsoft Corporation) C:WINDOWSsystem32logoncli.dll

2020-07-15 19:18 – 2020-07-15 19:18 – 000253016 _____ (Microsoft Corporation) C:WINDOWSsystem32weretw.dll

2020-07-15 19:18 – 2020-07-15 19:18 – 000248320 _____ (Microsoft Corporation) C:WINDOWSsystem32SettingsHandlers_Gpu.dll

2020-07-15 19:18 – 2020-07-15 19:18 – 000245248 _____ (Microsoft Corporation) C:WINDOWSsystem32wersvc.dll

2020-07-15 19:18 – 2020-07-15 19:18 – 000238592 _____ (Microsoft Corporation) C:WINDOWSsystem32intl.cpl

2020-07-15 19:18 – 2020-07-15 19:18 – 000230912 _____ (Microsoft Corporation) C:WINDOWSSysWOW64SyncSettings.dll

2020-07-15 19:18 – 2020-07-15 19:18 – 000228352 _____ (Microsoft Corporation) C:WINDOWSsystem32netprofm.dll

2020-07-15 19:18 – 2020-07-15 19:18 – 000227640 _____ (Microsoft Corporation) C:WINDOWSsystem32wermgr.exe

2020-07-15 19:18 – 2020-07-15 19:18 – 000223744 _____ (Microsoft Corporation) C:WINDOWSsystem32wdigest.dll

2020-07-15 19:18 – 2020-07-15 19:18 – 000184832 _____ (Microsoft Corporation) C:WINDOWSSysWOW64authui.dll

2020-07-15 19:18 – 2020-07-15 19:18 – 000181760 _____ (Microsoft Corporation) C:WINDOWSsystem32PrintWorkflowService.dll

2020-07-15 19:18 – 2020-07-15 19:18 – 000180024 _____ (Microsoft Corporation) C:WINDOWSsystem32Driversksecpkg.sys

2020-07-15 19:18 – 2020-07-15 19:18 – 000171024 _____ (Microsoft Corporation) C:WINDOWSsystem32WerFaultSecure.exe

2020-07-15 19:18 – 2020-07-15 19:18 – 000151552 _____ (Microsoft Corporation) C:WINDOWSsystem32Family.Client.dll

2020-07-15 19:18 – 2020-07-15 19:18 – 000134968 _____ (Microsoft Corporation) C:WINDOWSsystem32offlinelsa.dll

2020-07-15 19:18 – 2020-07-15 19:18 – 000131072 _____ (Microsoft Corporation) C:WINDOWSsystem32cryptcatsvc.dll

2020-07-15 19:18 – 2020-07-15 19:18 – 000126976 _____ (Microsoft Corporation) C:WINDOWSsystem32fontsub.dll

2020-07-15 19:18 – 2020-07-15 19:18 – 000116736 _____ (Microsoft Corporation) C:WINDOWSsystem32AxInstSv.dll

2020-07-15 19:18 – 2020-07-15 19:18 – 000114688 _____ (Microsoft Corporation) C:WINDOWSsystem32wsqmcons.exe

2020-07-15 19:18 – 2020-07-15 19:18 – 000105472 _____ (Microsoft Corporation) C:WINDOWSsystem32utcutil.dll

2020-07-15 19:18 – 2020-07-15 19:18 – 000103424 _____ (Microsoft Corporation) C:WINDOWSsystem32Family.Authentication.dll

2020-07-15 19:18 – 2020-07-15 19:18 – 000097280 _____ (Microsoft Corporation) C:WINDOWSsystem32nlaapi.dll

2020-07-15 19:18 – 2020-07-15 19:18 – 000094208 _____ (Microsoft Corporation) C:WINDOWSsystem32keyiso.dll

2020-07-15 19:18 – 2020-07-15 19:18 – 000083968 _____ (Microsoft Corporation) C:WINDOWSsystem32Print.Workflow.Source.dll

2020-07-15 19:18 – 2020-07-15 19:18 – 000083456 _____ (Microsoft Corporation) C:WINDOWSsystem32LocationFrameworkInternalPS.dll

2020-07-15 19:18 – 2020-07-15 19:18 – 000067072 _____ (Microsoft Corporation) C:WINDOWSSysWOW64windows.internal.shellcommon.AccountsControlExperience.dll

2020-07-15 19:18 – 2020-07-15 19:18 – 000063488 _____ (Microsoft Corporation) C:WINDOWSsystem32mf3216.dll

2020-07-15 19:18 – 2020-07-15 19:18 – 000060928 _____ (Microsoft Corporation) C:WINDOWSsystem32AxInstUI.exe

2020-07-15 19:18 – 2020-07-15 19:18 – 000054784 _____ (Microsoft Corporation) C:WINDOWSsystem32diagnosticdataquery.dll

2020-07-15 19:18 – 2020-07-15 19:18 – 000047104 _____ (Microsoft Corporation) C:WINDOWSsystem32werdiagcontroller.dll

2020-07-15 19:18 – 2020-07-15 19:18 – 000047104 _____ (Microsoft Corporation) C:WINDOWSsystem32npmproxy.dll

2020-07-15 19:18 – 2020-07-15 19:18 – 000040248 _____ (Microsoft Corporation) C:WINDOWSsystem32LocationFrameworkPS.dll

2020-07-15 19:18 – 2020-07-15 19:18 – 000038400 _____ (Microsoft Corporation) C:WINDOWSsystem32UIMgrBroker.exe

2020-07-15 19:18 – 2020-07-15 19:18 – 000030720 _____ (Microsoft Corporation) C:WINDOWSsystem32nlmproxy.dll

2020-07-15 19:18 – 2020-07-15 19:18 – 000026112 _____ (Microsoft Corporation) C:WINDOWSsystem32PrintWorkflowProxy.dll

2020-07-15 19:18 – 2020-07-15 19:18 – 000024288 _____ (Microsoft Corporation) C:WINDOWSsystem32WerEnc.dll

2020-07-15 19:18 – 2020-07-15 19:18 – 000022528 _____ (Microsoft Corporation) C:WINDOWSsystem32slcext.dll

2020-07-15 19:18 – 2020-07-15 19:18 – 000020480 _____ (Microsoft Corporation) C:WINDOWSsystem32nlmsprep.dll

2020-07-15 19:18 – 2020-07-15 19:18 – 000019968 _____ (Microsoft Corporation) C:WINDOWSSysWOW64slcext.dll

2020-07-15 19:18 – 2020-07-15 19:18 – 000016896 _____ (Microsoft Corporation) C:WINDOWSsystem32Windows.Graphics.Printing.Workflow.Native.dll

2020-07-15 19:18 – 2020-07-15 19:18 – 000016384 _____ (Microsoft Corporation) C:WINDOWSsystem32KBDJPN.DLL

2020-07-15 19:18 – 2020-07-15 19:18 – 000014336 _____ (Microsoft Corporation) C:WINDOWSsystem32dciman32.dll

2020-07-15 19:18 – 2020-07-15 19:18 – 000013824 _____ (Microsoft Corporation) C:WINDOWSsystem32UIManagerBrokerps.dll

2020-07-15 19:18 – 2020-07-15 19:18 – 000008704 _____ (Microsoft Corporation) C:WINDOWSsystem32kbd106n.dll

2020-07-15 19:18 – 2020-07-15 19:18 – 000008704 _____ (Microsoft Corporation) C:WINDOWSsystem32kbd106.dll

2020-07-15 19:18 – 2020-07-15 19:18 – 000008704 _____ (Microsoft Corporation) C:WINDOWSsystem32kbd101.dll

2020-07-15 19:18 – 2020-07-15 19:18 – 000008192 _____ (Microsoft Corporation) C:WINDOWSsystem32msimg32.dll

2020-07-15 19:18 – 2020-07-15 19:18 – 000003072 _____ (Microsoft Corporation) C:WINDOWSsystem32lpk.dll

2020-07-15 19:17 – 2020-07-15 19:17 – 010336896 _____ (Microsoft Corporation) C:WINDOWSsystem32Windows.Media.Protection.PlayReady.dll

2020-07-15 19:17 – 2020-07-15 19:17 – 009034752 _____ (Microsoft Corporation) C:WINDOWSsystem32BingMaps.dll

2020-07-15 19:17 – 2020-07-15 19:17 – 007992824 _____ (Microsoft Corporation) C:WINDOWSsystem32OneCoreUAPCommonProxyStub.dll

2020-07-15 19:17 – 2020-07-15 19:17 – 007964416 _____ (Microsoft Corporation) C:WINDOWSsystem32windows.storage.dll

2020-07-15 19:17 – 2020-07-15 19:17 – 006060544 _____ (Microsoft Corporation) C:WINDOWSsystem32twinui.pcshell.dll

2020-07-15 19:17 – 2020-07-15 19:17 – 003860480 _____ (Microsoft Corporation) C:WINDOWSsystem32AppXDeploymentServer.dll

2020-07-15 19:17 – 2020-07-15 19:17 – 003810816 _____ (Microsoft Corporation) C:WINDOWSsystem32win32kfull.sys

2020-07-15 19:17 – 2020-07-15 19:17 – 003779896 _____ (Microsoft Corporation) C:WINDOWSsystem32Driversdxgkrnl.sys

2020-07-15 19:17 – 2020-07-15 19:17 – 003752448 _____ (Microsoft Corporation) C:WINDOWSsystem32Microsoft.Bluetooth.Service.dll

2020-07-15 19:17 – 2020-07-15 19:17 – 003749376 _____ (Microsoft Corporation) C:WINDOWSsystem32EdgeContent.dll

2020-07-15 19:17 – 2020-07-15 19:17 – 002963456 _____ (Microsoft Corporation) C:WINDOWSsystem32win32kbase.sys

2020-07-15 19:17 – 2020-07-15 19:17 – 002631168 _____ (Microsoft Corporation) C:WINDOWSsystem32MapGeocoder.dll

2020-07-15 19:17 – 2020-07-15 19:17 – 002585912 _____ (Microsoft Corporation) C:WINDOWSsystem32UpdateAgent.dll

2020-07-15 19:17 – 2020-07-15 19:17 – 002566144 _____ (Microsoft Corporation) C:WINDOWSsystem32DWrite.dll

2020-07-15 19:17 – 2020-07-15 19:17 – 002466864 _____ (Microsoft Corporation) C:WINDOWSsystem32msxml6.dll

2020-07-15 19:17 – 2020-07-15 19:17 – 002399744 _____ (Microsoft Corporation) C:WINDOWSsystem32InstallService.dll

2020-07-15 19:17 – 2020-07-15 19:17 – 002338304 _____ (Microsoft Corporation) C:WINDOWSsystem32Windows.Devices.Perception.dll

2020-07-15 19:17 – 2020-07-15 19:17 – 002311680 _____ (Microsoft Corporation) C:WINDOWSsystem32Windows.Devices.Bluetooth.dll

2020-07-15 19:17 – 2020-07-15 19:17 – 002286128 _____ (Microsoft Corporation) C:WINDOWSsystem32Windows.ApplicationModel.Store.dll

2020-07-15 19:17 – 2020-07-15 19:17 – 002245632 _____ (Microsoft Corporation) C:WINDOWSsystem32ISM.dll

2020-07-15 19:17 – 2020-07-15 19:17 – 002131024 _____ (Microsoft Corporation) C:WINDOWSsystem32twinapi.appcore.dll

2020-07-15 19:17 – 2020-07-15 19:17 – 002077696 _____ (Microsoft Corporation) C:WINDOWSsystem32Windows.Devices.PointOfService.dll

2020-07-15 19:17 – 2020-07-15 19:17 – 001978656 _____ (Microsoft Corporation) C:WINDOWSsystem32dcomp.dll

2020-07-15 19:17 – 2020-07-15 19:17 – 001876480 _____ (Microsoft Corporation) C:WINDOWSsystem32wevtsvc.dll

2020-07-15 19:17 – 2020-07-15 19:17 – 001858560 _____ (Microsoft Corporation) C:WINDOWSsystem32Windows.Media.Speech.dll

2020-07-15 19:17 – 2020-07-15 19:17 – 001784488 _____ (Microsoft Corporation) C:WINDOWSsystem32WindowsCodecs.dll

2020-07-15 19:17 – 2020-07-15 19:17 – 001712128 _____ (Microsoft Corporation) C:WINDOWSsystem32Windows.Globalization.dll

2020-07-15 19:17 – 2020-07-15 19:17 – 001705472 _____ (Microsoft Corporation) C:WINDOWSsystem32WindowManagement.dll

2020-07-15 19:17 – 2020-07-15 19:17 – 001701368 _____ (Microsoft Corporation) C:WINDOWSsystem32user32.dll

2020-07-15 19:17 – 2020-07-15 19:17 – 001507328 _____ (Microsoft Corporation) C:WINDOWSsystem32MoUsoCoreWorker.exe

2020-07-15 19:17 – 2020-07-15 19:17 – 001495552 _____ (Microsoft Corporation) C:WINDOWSsystem32wpncore.dll

2020-07-15 19:17 – 2020-07-15 19:17 – 001491968 _____ (Microsoft Corporation) C:WINDOWSsystem32dosvc.dll

2020-07-15 19:17 – 2020-07-15 19:17 – 001422336 _____ (Microsoft Corporation) C:WINDOWSsystem32FntCache.dll

2020-07-15 19:17 – 2020-07-15 19:17 – 001414144 _____ (Microsoft Corporation) C:WINDOWSsystem32usocoreworker.exe

2020-07-15 19:17 – 2020-07-15 19:17 – 001378568 _____ (Microsoft Corporation) C:WINDOWSsystem32InputHost.dll

2020-07-15 19:17 – 2020-07-15 19:17 – 001359872 _____ (Microsoft Corporation) C:WINDOWSsystem32tsf3gip.dll

2020-07-15 19:17 – 2020-07-15 19:17 – 001323008 _____ (Microsoft Corporation) C:WINDOWSsystem32wpnapps.dll

2020-07-15 19:17 – 2020-07-15 19:17 – 001305600 _____ (Microsoft Corporation) C:WINDOWSsystem32Windows.Networking.BackgroundTransfer.dll

2020-07-15 19:17 – 2020-07-15 19:17 – 001222656 _____ (Microsoft Corporation) C:WINDOWSsystem32SEMgrSvc.dll

2020-07-15 19:17 – 2020-07-15 19:17 – 001207296 _____ (Microsoft Corporation) C:WINDOWSsystem32NotificationController.dll

2020-07-15 19:17 – 2020-07-15 19:17 – 001195520 _____ (Microsoft Corporation) C:WINDOWSsystem32MbaeApiPublic.dll

2020-07-15 19:17 – 2020-07-15 19:17 – 001182008 _____ (Microsoft Corporation) C:WINDOWSsystem32Windows.Services.TargetedContent.dll

2020-07-15 19:17 – 2020-07-15 19:17 – 001058816 _____ (Microsoft Corporation) C:WINDOWSsystem32Windows.UI.Core.TextInput.dll

2020-07-15 19:17 – 2020-07-15 19:17 – 001047552 _____ (Microsoft Corporation) C:WINDOWSsystem32kerberos.dll

2020-07-15 19:17 – 2020-07-15 19:17 – 001006592 _____ (Microsoft Corporation) C:WINDOWSsystem32uDWM.dll

2020-07-15 19:17 – 2020-07-15 19:17 – 000994248 _____ (Microsoft Corporation) C:WINDOWSsystem32MrmCoreR.dll

2020-07-15 19:17 – 2020-07-15 19:17 – 000968192 _____ (Microsoft Corporation) C:WINDOWSsystem32Windows.Security.Authentication.OnlineId.dll

2020-07-15 19:17 – 2020-07-15 19:17 – 000902976 _____ (Microsoft Corporation) C:WINDOWSsystem32Driversdxgmms2.sys

2020-07-15 19:17 – 2020-07-15 19:17 – 000833024 _____ (Microsoft Corporation) C:WINDOWSsystem32bisrv.dll

2020-07-15 19:17 – 2020-07-15 19:17 – 000753152 _____ (Microsoft Corporation) C:WINDOWSsystem32windows.immersiveshell.serviceprovider.dll

2020-07-15 19:17 – 2020-07-15 19:17 – 000704496 _____ (Microsoft Corporation) C:WINDOWSsystem32SHCore.dll

2020-07-15 19:17 – 2020-07-15 19:17 – 000676088 _____ (Microsoft Corporation) C:WINDOWSsystem32StructuredQuery.dll

2020-07-15 19:17 – 2020-07-15 19:17 – 000644096 _____ C:WINDOWSsystem32WindowManagementAPI.dll

2020-07-15 19:17 – 2020-07-15 19:17 – 000605184 _____ (Microsoft Corporation) C:WINDOWSsystem32TileDataRepository.dll

2020-07-15 19:17 – 2020-07-15 19:17 – 000597504 _____ (Microsoft Corporation) C:WINDOWSsystem32DevicesFlowBroker.dll

2020-07-15 19:17 – 2020-07-15 19:17 – 000596992 _____ (Microsoft Corporation) C:WINDOWSsystem32win32k.sys

2020-07-15 19:17 – 2020-07-15 19:17 – 000596480 _____ (Microsoft Corporation) C:WINDOWSsystem32Windows.Devices.LowLevel.dll

2020-07-15 19:17 – 2020-07-15 19:17 – 000586240 _____ (Microsoft Corporation) C:WINDOWSsystem32Windows.Payments.dll

2020-07-15 19:17 – 2020-07-15 19:17 – 000565760 _____ (Microsoft Corporation) C:WINDOWSsystem32Windows.Devices.SmartCards.Phone.dll

2020-07-15 19:17 – 2020-07-15 19:17 – 000565760 _____ (Microsoft Corporation) C:WINDOWSsystem32usosvc.dll

2020-07-15 19:17 – 2020-07-15 19:17 – 000560400 _____ (Microsoft Corporation) C:WINDOWSsystem32Windows.Media.MediaControl.dll

2020-07-15 19:17 – 2020-07-15 19:17 – 000556032 _____ (Microsoft Corporation) C:WINDOWSsystem32Windows.Graphics.dll

2020-07-15 19:17 – 2020-07-15 19:17 – 000534016 _____ (Microsoft Corporation) C:WINDOWSsystem32Windows.Data.Activities.dll

2020-07-15 19:17 – 2020-07-15 19:17 – 000533504 _____ (Microsoft Corporation) C:WINDOWSsystem32Narrator.exe

2020-07-15 19:17 – 2020-07-15 19:17 – 000531456 _____ (Microsoft Corporation) C:WINDOWSsystem32wow64win.dll

2020-07-15 19:17 – 2020-07-15 19:17 – 000522040 _____ (Microsoft Corporation) C:WINDOWSsystem32invagent.dll

2020-07-15 19:17 – 2020-07-15 19:17 – 000491520 _____ (Microsoft Corporation) C:WINDOWSsystem32Driverscldflt.sys

2020-07-15 19:17 – 2020-07-15 19:17 – 000467968 _____ (Microsoft Corporation) C:WINDOWSsystem32CloudDomainJoinDataModelServer.dll

2020-07-15 19:17 – 2020-07-15 19:17 – 000454968 _____ (Microsoft Corporation) C:WINDOWSsystem32Driversdxgmms1.sys

2020-07-15 19:17 – 2020-07-15 19:17 – 000423424 _____ (Microsoft Corporation) C:WINDOWSsystem32Windows.Devices.Usb.dll

2020-07-15 19:17 – 2020-07-15 19:17 – 000405304 _____ (Microsoft Corporation) C:WINDOWSsystem32CloudExperienceHost.dll

2020-07-15 19:17 – 2020-07-15 19:17 – 000398848 _____ (Microsoft Corporation) C:WINDOWSsystem32Windows.Networking.NetworkOperators.ESim.dll

2020-07-15 19:17 – 2020-07-15 19:17 – 000390656 _____ (Microsoft Corporation) C:WINDOWSsystem32Windows.Devices.Lights.dll

2020-07-15 19:17 – 2020-07-15 19:17 – 000389952 _____ (Microsoft Corporation) C:WINDOWSsystem32Windows.Storage.ApplicationData.dll

2020-07-15 19:17 – 2020-07-15 19:17 – 000388096 _____ (Microsoft Corporation) C:WINDOWSsystem32Windows.Gaming.Preview.dll

2020-07-15 19:17 – 2020-07-15 19:17 – 000386048 _____ (Microsoft Corporation) C:WINDOWSsystem32PickerPlatform.dll

2020-07-15 19:17 – 2020-07-15 19:17 – 000370688 _____ (Microsoft Corporation) C:WINDOWSsystem32vaultsvc.dll

2020-07-15 19:17 – 2020-07-15 19:17 – 000368128 _____ (Microsoft Corporation) C:WINDOWSsystem32QuickActionsDataModel.dll

2020-07-15 19:17 – 2020-07-15 19:17 – 000367104 _____ (Microsoft Corporation) C:WINDOWSsystem32wpnclient.dll

2020-07-15 19:17 – 2020-07-15 19:17 – 000365568 _____ (Microsoft Corporation) C:WINDOWSsystem32AppxAllUserStore.dll

2020-07-15 19:17 – 2020-07-15 19:17 – 000362496 _____ (Microsoft Corporation) C:WINDOWSsystem32WaaSMedicSvc.dll

2020-07-15 19:17 – 2020-07-15 19:17 – 000355328 _____ (Microsoft Corporation) C:WINDOWSsystem32Windows.System.Diagnostics.dll

2020-07-15 19:17 – 2020-07-15 19:17 – 000327168 _____ (Microsoft Corporation) C:WINDOWSsystem32SettingsHandlers_Cortana.dll

2020-07-15 19:17 – 2020-07-15 19:17 – 000319808 _____ (Microsoft Corporation) C:WINDOWSsystem32CloudExperienceHostBroker.dll

2020-07-15 19:17 – 2020-07-15 19:17 – 000319488 _____ (Microsoft Corporation) C:WINDOWSsystem32vaultcli.dll

2020-07-15 19:17 – 2020-07-15 19:17 – 000298496 _____ (Microsoft Corporation) C:WINDOWSsystem32Windows.Internal.Devices.Sensors.dll

2020-07-15 19:17 – 2020-07-15 19:17 – 000298496 _____ (Microsoft Corporation) C:WINDOWSsystem32TDLMigration.dll

2020-07-15 19:17 – 2020-07-15 19:17 – 000286720 _____ (Microsoft Corporation) C:WINDOWSsystem32Windows.Devices.HumanInterfaceDevice.dll

2020-07-15 19:17 – 2020-07-15 19:17 – 000269312 _____ (Microsoft Corporation) C:WINDOWSsystem32Windows.Security.Authentication.Identity.Provider.dll

2020-07-15 19:17 – 2020-07-15 19:17 – 000266752 _____ (Microsoft Corporation) C:WINDOWSsystem32bthprops.cpl

2020-07-15 19:17 – 2020-07-15 19:17 – 000265728 _____ (Microsoft Corporation) C:WINDOWSsystem32cdd.dll

2020-07-15 19:17 – 2020-07-15 19:17 – 000265216 _____ (Microsoft Corporation) C:WINDOWSsystem32PasswordEnrollmentManager.dll

2020-07-15 19:17 – 2020-07-15 19:17 – 000262656 _____ (Microsoft Corporation) C:WINDOWSsystem32WaaSMedicCapsule.dll

2020-07-15 19:17 – 2020-07-15 19:17 – 000252416 _____ (Microsoft Corporation) C:WINDOWSsystem32Windows.Internal.Graphics.Display.DisplayColorManagement.dll

2020-07-15 19:17 – 2020-07-15 19:17 – 000249656 _____ (Microsoft Corporation) C:WINDOWSsystem32Windows.Management.Workplace.dll

2020-07-15 19:17 – 2020-07-15 19:17 – 000248832 _____ (Microsoft Corporation) C:WINDOWSsystem32policymanagerprecheck.dll

2020-07-15 19:17 – 2020-07-15 19:17 – 000247296 _____ (Microsoft Corporation) C:WINDOWSsystem32psmsrv.dll

2020-07-15 19:17 – 2020-07-15 19:17 – 000242688 _____ (Microsoft Corporation) C:WINDOWSsystem32CapabilityAccessManagerClient.dll

2020-07-15 19:17 – 2020-07-15 19:17 – 000240640 _____ (Microsoft Corporation) C:WINDOWSsystem32wuuhosdeployment.dll

2020-07-15 19:17 – 2020-07-15 19:17 – 000228864 _____ (Microsoft Corporation) C:WINDOWSsystem32Windows.Internal.CapturePicker.Desktop.dll

2020-07-15 19:17 – 2020-07-15 19:17 – 000224768 _____ (Microsoft Corporation) C:WINDOWSsystem32PeopleBand.dll

2020-07-15 19:17 – 2020-07-15 19:17 – 000220672 _____ (Microsoft Corporation) C:WINDOWSsystem32MtcModel.dll

2020-07-15 19:17 – 2020-07-15 19:17 – 000215896 _____ (Microsoft Corporation) C:WINDOWSsystem32coreglobconfig.dll

2020-07-15 19:17 – 2020-07-15 19:17 – 000181248 _____ (Microsoft Corporation) C:WINDOWSsystem32Windows.Energy.dll

2020-07-15 19:17 – 2020-07-15 19:17 – 000173056 _____ (Microsoft Corporation) C:WINDOWSsystem32Windows.Internal.CapturePicker.dll

2020-07-15 19:17 – 2020-07-15 19:17 – 000170496 _____ (Microsoft Corporation) C:WINDOWSsystem32Windows.Internal.Graphics.Display.DisplayEnhancementManagement.dll

2020-07-15 19:17 – 2020-07-15 19:17 – 000154624 _____ (Microsoft Corporation) C:WINDOWSsystem32Windows.Devices.SerialCommunication.dll

2020-07-15 19:17 – 2020-07-15 19:17 – 000146944 _____ (Microsoft Corporation) C:WINDOWSsystem32AppointmentActivation.dll

2020-07-15 19:17 – 2020-07-15 19:17 – 000137216 _____ (Microsoft Corporation) C:WINDOWSsystem32usoapi.dll

2020-07-15 19:17 – 2020-07-15 19:17 – 000136704 _____ (Microsoft Corporation) C:WINDOWSsystem32CredDialogBroker.dll

2020-07-15 19:17 – 2020-07-15 19:17 – 000132728 _____ (Microsoft Corporation) C:WINDOWSsystem32win32u.dll

2020-07-15 19:17 – 2020-07-15 19:17 – 000130048 _____ (Microsoft Corporation) C:WINDOWSsystem32CaptureService.dll

2020-07-15 19:17 – 2020-07-15 19:17 – 000125952 _____ (Microsoft Corporation) C:WINDOWSsystem32EaseOfAccessDialog.exe

2020-07-15 19:17 – 2020-07-15 19:17 – 000107008 _____ (Microsoft Corporation) C:WINDOWSsystem32sethc.exe

2020-07-15 19:17 – 2020-07-15 19:17 – 000106496 _____ (Microsoft Corporation) C:WINDOWSsystem32DevicePairingExperienceMEM.dll

2020-07-15 19:17 – 2020-07-15 19:17 – 000092160 _____ (Microsoft Corporation) C:WINDOWSsystem32WaaSMedicAgent.exe

2020-07-15 19:17 – 2020-07-15 19:17 – 000028672 _____ (Microsoft Corporation) C:WINDOWSsystem32WaaSMedicPS.dll

2020-07-15 19:17 – 2020-07-15 19:17 – 000002560 _____ (Microsoft Corporation) C:WINDOWSsystem32msxml6r.dll

2020-07-15 19:16 – 2020-07-15 19:16 – 017540608 _____ (Microsoft Corporation) C:WINDOWSsystem32Windows.UI.Xaml.dll

2020-07-15 19:16 – 2020-07-15 19:16 – 006709248 _____ (Microsoft Corporation) C:WINDOWSsystem32Windows.Data.Pdf.dll

2020-07-15 19:16 – 2020-07-15 19:16 – 006175232 _____ (Microsoft Corporation) C:WINDOWSsystem32twinui.dll

2020-07-15 19:16 – 2020-07-15 19:16 – 005766168 _____ (Microsoft Corporation) C:WINDOWSsystem32StartTileData.dll

2020-07-15 19:16 – 2020-07-15 19:16 – 004485216 _____ (Microsoft Corporation) C:WINDOWSexplorer.exe

2020-07-15 19:16 – 2020-07-15 19:16 – 002305024 _____ (Microsoft Corporation) C:WINDOWSsystem32Windows.Graphics.Printing.3D.dll

2020-07-15 19:16 – 2020-07-15 19:16 – 002040832 _____ (Microsoft Corporation) C:WINDOWSsystem32CoreShell.dll

2020-07-15 19:16 – 2020-07-15 19:16 – 001766912 _____ (Microsoft Corporation) C:WINDOWSsystem32cdprt.dll

2020-07-15 19:16 – 2020-07-15 19:16 – 001762632 _____ (Microsoft Corporation) C:WINDOWSsystem32ContentDeliveryManager.Utilities.dll

2020-07-15 19:16 – 2020-07-15 19:16 – 001556480 _____ (Microsoft Corporation) C:WINDOWSsystem32Wpc.dll

2020-07-15 19:16 – 2020-07-15 19:16 – 001540096 _____ (Microsoft Corporation) C:WINDOWSsystem32TaskFlowDataEngine.dll

2020-07-15 19:16 – 2020-07-15 19:16 – 001530880 _____ (Microsoft Corporation) C:WINDOWSsystem32TokenBroker.dll

2020-07-15 19:16 – 2020-07-15 19:16 – 001403904 _____ (Microsoft Corporation) C:WINDOWSsystem32Windows.Media.FaceAnalysis.dll

2020-07-15 19:16 – 2020-07-15 19:16 – 001257472 _____ (Microsoft Corporation) C:WINDOWSsystem32MiracastReceiver.dll

2020-07-15 19:16 – 2020-07-15 19:16 – 001145344 _____ (Microsoft Corporation) C:WINDOWSsystem32Windows.Security.Authentication.Web.Core.dll

2020-07-15 19:16 – 2020-07-15 19:16 – 001114112 _____ (Microsoft Corporation) C:WINDOWSsystem32ShareHost.dll

2020-07-15 19:16 – 2020-07-15 19:16 – 001082168 _____ (Microsoft Corporation) C:WINDOWSsystem32CloudExperienceHostCommon.dll

2020-07-15 19:16 – 2020-07-15 19:16 – 001069056 _____ (Microsoft Corporation) C:WINDOWSsystem32Windows.AccountsControl.dll

2020-07-15 19:16 – 2020-07-15 19:16 – 001062912 _____ (Microsoft Corporation) C:WINDOWSsystem32Windows.Internal.Signals.dll

2020-07-15 19:16 – 2020-07-15 19:16 – 001048480 _____ (Microsoft Corporation) C:WINDOWSsystem32Windows.Perception.Stub.dll

2020-07-15 19:16 – 2020-07-15 19:16 – 001043456 _____ (Microsoft Corporation) C:WINDOWSsystem32Windows.Media.Ocr.dll

2020-07-15 19:16 – 2020-07-15 19:16 – 000937464 _____ (Microsoft Corporation) C:WINDOWSsystem32Windows.ApplicationModel.dll

2020-07-15 19:16 – 2020-07-15 19:16 – 000914200 _____ (Microsoft Corporation) C:WINDOWSsystem32AppContracts.dll

2020-07-15 19:16 – 2020-07-15 19:16 – 000894464 _____ (Microsoft Corporation) C:WINDOWSsystem32Windows.Management.Service.dll

2020-07-15 19:16 – 2020-07-15 19:16 – 000879104 _____ (Microsoft Corporation) C:WINDOWSsystem32agentactivationruntimewindows.dll

2020-07-15 19:16 – 2020-07-15 19:16 – 000858624 _____ (Microsoft Corporation) C:WINDOWSsystem32agentactivationruntime.dll

2020-07-15 19:16 – 2020-07-15 19:16 – 000830464 _____ (Microsoft Corporation) C:WINDOWSsystem32Windows.Graphics.Printing.dll

2020-07-15 19:16 – 2020-07-15 19:16 – 000824832 _____ (Microsoft Corporation) C:WINDOWSsystem32Windows.Gaming.Input.dll

2020-07-15 19:16 – 2020-07-15 19:16 – 000804864 _____ (Microsoft Corporation) C:WINDOWSsystem32Windows.Devices.SmartCards.dll

2020-07-15 19:16 – 2020-07-15 19:16 – 000799552 _____ (Microsoft Corporation) C:WINDOWSsystem32windows.applicationmodel.datatransfer.dll

2020-07-15 19:16 – 2020-07-15 19:16 – 000799232 _____ (Microsoft Corporation) C:WINDOWSsystem32spoolsv.exe

2020-07-15 19:16 – 2020-07-15 19:16 – 000791552 _____ (Microsoft Corporation) C:WINDOWSsystem32ActivationManager.dll

2020-07-15 19:16 – 2020-07-15 19:16 – 000784896 _____ (Microsoft Corporation) C:WINDOWSsystem32Windows.Media.Import.dll

2020-07-15 19:16 – 2020-07-15 19:16 – 000781312 _____ (Microsoft Corporation) C:WINDOWSsystem32Windows.ApplicationModel.ConversationalAgent.dll

2020-07-15 19:16 – 2020-07-15 19:16 – 000752640 _____ (Microsoft Corporation) C:WINDOWSsystem32Windows.System.Launcher.dll

2020-07-15 19:16 – 2020-07-15 19:16 – 000678200 _____ (Microsoft Corporation) C:WINDOWSsystem32Driversspaceport.sys

2020-07-15 19:16 – 2020-07-15 19:16 – 000670208 _____ (Microsoft Corporation) C:WINDOWSsystem32twinapi.dll

2020-07-15 19:16 – 2020-07-15 19:16 – 000657920 _____ (Microsoft Corporation) C:WINDOWSsystem32twinui.appcore.dll

2020-07-15 19:16 – 2020-07-15 19:16 – 000646656 _____ (Microsoft Corporation) C:WINDOWSsystem32Windows.Devices.AllJoyn.dll

2020-07-15 19:16 – 2020-07-15 19:16 – 000541696 _____ (Microsoft Corporation) C:WINDOWSsystem32MicrosoftAccountWAMExtension.dll

2020-07-15 19:16 – 2020-07-15 19:16 – 000539256 _____ (Microsoft Corporation) C:WINDOWSsystem32Windows.Devices.Enumeration.dll

2020-07-15 19:16 – 2020-07-15 19:16 – 000508416 _____ (Microsoft Corporation) C:WINDOWSsystem32RTMediaFrame.dll

2020-07-15 19:16 – 2020-07-15 19:16 – 000506672 _____ (Microsoft Corporation) C:WINDOWSsystem32Windows.Media.Devices.dll

2020-07-15 19:16 – 2020-07-15 19:16 – 000504832 _____ (Microsoft Corporation) C:WINDOWSsystem32Windows.Devices.WiFiDirect.dll

2020-07-15 19:16 – 2020-07-15 19:16 – 000488448 _____ (Microsoft Corporation) C:WINDOWSsystem32modernexecserver.dll

2020-07-15 19:16 – 2020-07-15 19:16 – 000475648 _____ (Microsoft Corporation) C:WINDOWSsystem32CoreShellAPI.dll

2020-07-15 19:16 – 2020-07-15 19:16 – 000439296 _____ (Microsoft Corporation) C:WINDOWSsystem32AarSvc.dll

2020-07-15 19:16 – 2020-07-15 19:16 – 000436224 _____ (Microsoft Corporation) C:WINDOWSsystem32Windows.Devices.Midi.dll

2020-07-15 19:16 – 2020-07-15 19:16 – 000430080 _____ (Microsoft Corporation) C:WINDOWSsystem32MicrosoftAccountExtension.dll

2020-07-15 19:16 – 2020-07-15 19:16 – 000423224 _____ (Microsoft Corporation) C:WINDOWSsystem32SystemSettings.DataModel.dll

2020-07-15 19:16 – 2020-07-15 19:16 – 000380632 _____ (Microsoft Corporation) C:WINDOWSsystem32CredentialEnrollmentManager.exe

2020-07-15 19:16 – 2020-07-15 19:16 – 000326144 _____ (Microsoft Corporation) C:WINDOWSsystem32SyncSettings.dll

2020-07-15 19:16 – 2020-07-15 19:16 – 000316416 _____ (Microsoft Corporation) C:WINDOWSsystem32windows.internal.shellcommon.shareexperience.dll

2020-07-15 19:16 – 2020-07-15 19:16 – 000287232 _____ (Microsoft Corporation) C:WINDOWSsystem32netman.dll

2020-07-15 19:16 – 2020-07-15 19:16 – 000283136 _____ (Microsoft Corporation) C:WINDOWSsystem32Windows.UI.AppDefaults.dll

2020-07-15 19:16 – 2020-07-15 19:16 – 000281088 _____ (Microsoft Corporation) C:WINDOWSsystem32authui.dll

2020-07-15 19:16 – 2020-07-15 19:16 – 000222720 _____ (Microsoft Corporation) C:WINDOWSsystem32Windows.ApplicationModel.Core.dll

2020-07-15 19:16 – 2020-07-15 19:16 – 000220160 _____ (Microsoft Corporation) C:WINDOWSsystem32UserDeviceRegistration.dll

2020-07-15 19:16 – 2020-07-15 19:16 – 000215864 _____ (Microsoft Corporation) C:WINDOWSsystem32Driversspacedump.sys

2020-07-15 19:16 – 2020-07-15 19:16 – 000208384 _____ (Microsoft Corporation) C:WINDOWSsystem32AppExtension.dll

2020-07-15 19:16 – 2020-07-15 19:16 – 000202752 _____ (Microsoft Corporation) C:WINDOWSsystem32DriversUSBAUDIO.sys

2020-07-15 19:16 – 2020-07-15 19:16 – 000202240 _____ (Microsoft Corporation) C:WINDOWSsystem32ErrorDetails.dll

2020-07-15 19:16 – 2020-07-15 19:16 – 000200192 _____ (Microsoft Corporation) C:WINDOWSsystem32useractivitybroker.dll

2020-07-15 19:16 – 2020-07-15 19:16 – 000198144 _____ (Microsoft Corporation) C:WINDOWSsystem32Windows.UI.Internal.Input.ExpressiveInput.dll

2020-07-15 19:16 – 2020-07-15 19:16 – 000148280 _____ (Microsoft Corporation) C:WINDOWSsystem32ResourcePolicyServer.dll

2020-07-15 19:16 – 2020-07-15 19:16 – 000140288 _____ (Microsoft Corporation) C:WINDOWSsystem32Windows.UI.Storage.dll

2020-07-15 19:16 – 2020-07-15 19:16 – 000135168 _____ (Microsoft Corporation) C:WINDOWSsplwow64.exe

2020-07-15 19:16 – 2020-07-15 19:16 – 000131072 _____ (Microsoft Corporation) C:WINDOWSsystem32CameraCaptureUI.dll

2020-07-15 19:16 – 2020-07-15 19:16 – 000113112 _____ (Microsoft Corporation) C:WINDOWSsystem32Windows.Security.Credentials.UI.CredentialPicker.dll

2020-07-15 19:16 – 2020-07-15 19:16 – 000100352 _____ (Microsoft Corporation) C:WINDOWSsystem32DiagnosticInvoker.dll

2020-07-15 19:16 – 2020-07-15 19:16 – 000090112 _____ (Microsoft Corporation) C:WINDOWSsystem32windows.internal.shellcommon.AccountsControlExperience.dll

2020-07-15 19:16 – 2020-07-15 19:16 – 000085504 _____ (Microsoft Corporation) C:WINDOWSsystem32SystemUWPLauncher.exe

2020-07-15 19:16 – 2020-07-15 19:16 – 000076992 _____ (Microsoft Corporation) C:WINDOWSsystem32CredentialEnrollmentManagerForUser.dll

2020-07-15 19:16 – 2020-07-15 19:16 – 000071792 _____ (Microsoft Corporation) C:WINDOWSsystem32ResourcePolicyClient.dll

2020-07-15 19:16 – 2020-07-15 19:16 – 000070968 _____ (Microsoft Corporation) C:WINDOWSsystem32GameInput.dll

2020-07-15 19:16 – 2020-07-15 19:16 – 000044032 _____ (Microsoft Corporation) C:WINDOWSsystem32Windows.UI.Xaml.Resources.Common.dll

2020-07-15 18:46 – 2020-06-29 23:04 – 000495616 _____ (Microsoft Corporation) C:WINDOWSsystem32poqexec.exe

2020-07-15 18:46 – 2020-06-29 22:58 – 000391168 _____ (Microsoft Corporation) C:WINDOWSSysWOW64poqexec.exe

2020-07-15 13:15 – 2020-07-15 13:15 – 000288033 _____ C:UsersRyanDownloads9707_English_RR.pdf

2020-07-13 08:04 – 2020-07-13 08:04 – 000035923 _____ C:UsersRyanDownloadsShortcutPlugin1.6.zip

2020-07-12 22:05 – 2020-07-12 22:40 – 2876664920 _____ C:UsersRyanDownloadsFully Updated HoneySelect + All DLC & Extra Content [BACKUP] – Version 1.20.rar

2020-07-12 20:27 – 2020-08-04 05:40 – 000000000 ____D C:UsersRyanAppDataLocalBitTorrentHelper

2020-07-12 20:26 – 2020-07-12 20:26 – 000001867 _____ C:UsersRyanAppDataRoamingMicrosoftWindowsStart MenuProgramsuTorrent Web.lnk

 

==================== One month (modified) ==================

 

(If an entry is included in the fixlist, the file/folder will be moved.)

 

2020-08-10 09:56 – 2020-06-22 02:18 – 000004210 _____ C:WINDOWSsystem32TasksCCleaner Update

2020-08-10 09:56 – 2019-12-07 05:14 – 000000000 ____D C:ProgramDataregid.1991-06.com.microsoft

2020-08-10 08:42 – 2017-05-09 14:34 – 000000000 __SHD C:UsersRyanIntelGraphicsProfiles

2020-08-10 08:41 – 2020-06-22 02:18 – 000000006 ____H C:WINDOWSTasksSA.DAT

2020-08-10 08:41 – 2020-06-22 01:56 – 000008192 ___SH C:DumpStack.log.tmp

2020-08-10 08:41 – 2017-02-18 00:32 – 000000000 ____D C:Intel

2020-08-10 08:37 – 2019-12-07 05:03 – 000524288 _____ C:WINDOWSsystem32configBBI

2020-08-10 08:35 – 2020-06-22 00:51 – 000000000 ____D C:UsersRyan

2020-08-10 07:33 – 2017-05-10 05:10 – 000000000 ____D C:UsersRyanAppDataLocalCrashDumps

2020-08-10 07:13 – 2019-12-07 05:14 – 000000000 ____D C:WINDOWSLiveKernelReports

2020-08-10 06:52 – 2020-06-22 01:57 – 000000000 ____D C:WINDOWSsystem32SleepStudy

2020-08-10 06:35 – 2018-06-14 01:25 – 000000000 ____D C:UsersRyanAppDataLocalLowMozilla

2020-08-10 06:03 – 2020-06-22 02:18 – 000005404 _____ C:WINDOWSsystem32TasksSoftware Update Application

2020-08-10 06:03 – 2017-02-18 01:04 – 000000000 ____D C:ProgramDataMicrosoftWindowsStart MenuProgramsAcer

2020-08-10 05:58 – 2020-06-22 02:17 – 000842414 _____ C:WINDOWSsystem32PerfStringBackup.INI

2020-08-10 05:58 – 2019-12-07 05:13 – 000000000 ____D C:WINDOWSINF

2020-08-09 05:10 – 2019-12-07 05:03 – 000000000 ____D C:WINDOWSCbsTemp

2020-08-08 17:54 – 2019-12-07 05:14 – 000000000 ___HD C:Program FilesWindowsApps

2020-08-08 17:54 – 2019-12-07 05:14 – 000000000 ____D C:WINDOWSAppReadiness

2020-08-08 17:14 – 2020-06-27 07:37 – 000000000 ____D C:illusion

2020-08-07 11:22 – 2020-06-22 02:18 – 000003834 _____ C:WINDOWSsystem32TasksIUM-F1E24CA0-B63E-4F13-A9E3-4ADE3BFF3473

2020-08-07 11:05 – 2017-02-18 00:22 – 000000000 ____D C:ProgramDataPackage Cache

2020-08-07 10:48 – 2020-06-22 02:18 – 000003762 _____ C:WINDOWSsystem32TasksIntelSURQC-Upgrade-86621605-2a0b-4128-8ffc-15514c247132

2020-08-07 10:48 – 2020-06-22 02:18 – 000003528 _____ C:WINDOWSsystem32TasksIntelSURQC-Upgrade-86621605-2a0b-4128-8ffc-15514c247132-Logon

2020-08-07 10:47 – 2020-06-26 06:17 – 000001517 _____ C:ProgramDataMicrosoftWindowsStart MenuProgramsIntel Driver & Support Assistant.lnk

2020-08-07 10:46 – 2017-05-15 23:33 – 000000000 ____D C:Program Files (x86)Intel

2020-08-07 04:11 – 2018-05-19 19:58 – 000000870 _____ C:UsersPublicDesktopCCleaner.lnk

2020-08-06 02:38 – 2019-12-07 05:03 – 000032768 _____ C:WINDOWSsystem32configELAM

2020-08-05 11:26 – 2017-09-18 09:16 – 000000000 ____D C:Program Files (x86)Bruteforce Save Data

2020-08-04 22:16 – 2017-06-01 04:33 – 000000000 ____D C:UsersRyanAppDataLocalNPE

2020-08-04 05:02 – 2019-12-07 05:14 – 000000000 ___HD C:WINDOWSELAMBKUP

2020-08-04 05:02 – 2019-08-17 14:35 – 000002028 _____ C:UsersPublicDesktopMalwarebytes.lnk

2020-08-04 05:01 – 2019-08-17 14:35 – 000153312 _____ (Malwarebytes) C:WINDOWSsystem32Driversmbae64.sys

2020-08-04 02:38 – 2018-06-14 01:25 – 000000000 ____D C:Program Files (x86)Mozilla Maintenance Service

2020-08-04 02:19 – 2018-10-16 16:04 – 000000000 ____D C:UsersRyanAppDataRoamingdiscord

2020-08-01 21:36 – 2020-06-18 20:55 – 000002428 _____ C:ProgramDataMicrosoftWindowsStart MenuProgramsMicrosoft Edge.lnk

2020-08-01 21:36 – 2020-06-18 20:55 – 000002266 _____ C:UsersPublicDesktopMicrosoft Edge.lnk

2020-07-31 07:06 – 2019-06-12 23:05 – 000000000 ____D C:Program FilesMozilla Firefox

2020-07-31 07:06 – 2018-06-14 01:25 – 000001012 _____ C:ProgramDataMicrosoftWindowsStart MenuProgramsFirefox.lnk

2020-07-30 19:30 – 2017-05-09 15:03 – 000000000 ____D C:Program FilesCommon FilesAV

2020-07-30 18:55 – 2018-02-06 05:54 – 000000000 ____D C:WINDOWSsystem32DriversNGCx64

2020-07-30 18:54 – 2018-02-06 06:38 – 000002559 _____ C:UsersPublicDesktopNorton Security.lnk

2020-07-29 20:43 – 2017-05-09 14:59 – 000002308 _____ C:ProgramDataMicrosoftWindowsStart MenuProgramsGoogle Chrome.lnk

2020-07-29 20:43 – 2017-05-09 14:59 – 000002267 _____ C:UsersPublicDesktopGoogle Chrome.lnk

2020-07-20 18:37 – 2018-04-11 16:37 – 000000000 ____D C:UsersRyanAppDataRoamingvlc

2020-07-18 02:26 – 2017-10-20 11:37 – 000000000 ____D C:UsersRyanAppDataLocalPackages

2020-07-16 02:35 – 2020-06-22 01:57 – 000458664 _____ C:WINDOWSsystem32FNTCACHE.DAT

2020-07-16 02:29 – 2019-12-07 05:14 – 000000000 ___SD C:WINDOWSsystem32DiagSvcs

2020-07-16 02:29 – 2019-12-07 05:14 – 000000000 ___RD C:WINDOWSImmersiveControlPanel

2020-07-16 02:29 – 2019-12-07 05:14 – 000000000 ____D C:WINDOWSSysWOW64WinMetadata

2020-07-16 02:29 – 2019-12-07 05:14 – 000000000 ____D C:WINDOWSSystemResources

2020-07-16 02:29 – 2019-12-07 05:14 – 000000000 ____D C:WINDOWSsystem32WinMetadata

2020-07-16 02:29 – 2019-12-07 05:14 – 000000000 ____D C:WINDOWSsystem32oobe

2020-07-16 02:29 – 2019-12-07 05:14 – 000000000 ____D C:WINDOWSsystem32appraiser

2020-07-16 02:29 – 2019-12-07 05:14 – 000000000 ____D C:WINDOWSShellExperiences

2020-07-16 02:29 – 2019-12-07 05:14 – 000000000 ____D C:WINDOWSbcastdvr

2020-07-16 02:29 – 2019-12-07 05:14 – 000000000 ____D C:Program FilesCommon FilesSystem

2020-07-15 19:34 – 2019-12-07 05:03 – 000000000 ____D C:WINDOWSservicing

2020-07-14 21:01 – 2020-06-27 02:17 – 000004562 _____ C:WINDOWSsystem32TasksAdobe Acrobat Update Task

2020-07-14 21:00 – 2020-06-27 02:12 – 000002143 _____ C:ProgramDataMicrosoftWindowsStart MenuProgramsAcrobat Reader DC.lnk

2020-07-13 02:11 – 2019-03-31 19:08 – 000000000 ____D C:UsersRyanAppDataLocalHSResolveMoreSlotID

2020-07-12 04:14 – 2017-05-09 14:36 – 000000000 ____D C:UsersRyanAppDataRoamingSkype

2020-07-12 02:14 – 2020-06-22 02:18 – 000003478 _____ C:WINDOWSsystem32TasksMicrosoftEdgeUpdateTaskMachineUA

2020-07-12 02:14 – 2020-06-22 02:18 – 000003354 _____ C:WINDOWSsystem32TasksMicrosoftEdgeUpdateTaskMachineCore

 

==================== Files in the root of some directories ========

 

2017-06-03 00:39 – 2017-06-03 00:39 – 000134164 _____ () C:UsersRyanAppDataRoamingDMGR_1N1I1F1S1T1I0M1F1Q2Y1I1P1B0C1F1Q1P.txt

2017-05-10 13:57 – 2017-06-01 01:25 – 000007605 _____ () C:UsersRyanAppDataLocalResmon.ResmonCfg

 

==================== SigCheck ============================

 

(There is no automatic fix for files that do not pass verification.)

 

==================== End of FRST.txt ========================

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 09-08-2020

Ran by Ryan (10-08-2020 09:58:58)

Running from C:UsersRyanDownloads

Windows 10 Home Version 2004 19041.388 (X64) (2020-06-22 07:24:09)

Boot Mode: Normal

==========================================================

 

 

==================== Accounts: =============================

 

Administrator (S-1-5-21-2794731821-2035859010-3306423656-500 – Administrator – Disabled)

DefaultAccount (S-1-5-21-2794731821-2035859010-3306423656-503 – Limited – Disabled)

defaultuser0 (S-1-5-21-2794731821-2035859010-3306423656-1000 – Limited – Disabled) => C:Usersdefaultuser0

Guest (S-1-5-21-2794731821-2035859010-3306423656-501 – Limited – Disabled)

Ryan (S-1-5-21-2794731821-2035859010-3306423656-1001 – Administrator – Enabled) => C:UsersRyan

WDAGUtilityAccount (S-1-5-21-2794731821-2035859010-3306423656-504 – Limited – Disabled)

 

==================== Security Center ========================

 

(If an entry is included in the fixlist, it will be removed.)

 

AV: Norton Security Suite (Enabled – Up to date) 1122B19A-E671-38EC-8EAC-87048FD4528D

AV: Norton Security Suite (Enabled – Up to date) A2708B76-6835-6565-CB96-694212954A75

AV: Windows Defender (Disabled – Up to date) D68DDC3A-831F-4fae-9E44-DA132C1ACF46

AV: Norton Security Suite (Enabled – Up to date) 9E3FD331-C4C2-7AC4-0537-131EEF1B1F8A

AS: Malwarebytes (Disabled – Up to date) 98619B37-4FC4-67F2-1C99-EEF6D47DBD96

AS: Windows Defender (Disabled – Up to date) D68DDC3A-831F-4fae-9E44-DA132C1ACF46

FW: Norton Security Suite (Enabled) 9A4B0A53-225A-643D-E0C9-C077EC460D0E

FW: Norton Security Suite (Enabled) A6045214-8EAD-7B9C-2E68-BA2B11C858F1

FW: Norton Security Suite (Enabled) 291930BF-AC1E-39B4-A5F3-2E31710715F6

 

==================== Installed Programs ======================

 

(Only the adware programs with “Hidden” flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

 

Acer Care Center (HKLM…1AF41E84-3408-499A-8C93-8891F0612719) (Version: 2.00.3038 – Acer Incorporated)

Acer Quick Access (HKLM…8BBF04F1-C68A-441C-B5EF-446EE9960EAF) (Version: 2.01.3028 – Acer Incorporated)

Adobe Acrobat Reader DC (HKLM-x32…AC76BA86-7AD7-1033-7B44-AC0F074E4100) (Version: 20.009.20074 – Adobe Systems Incorporated)

Apowersoft Online Launcher version 1.7.1 (HKUS-1-5-21-2794731821-2035859010-3306423656-1001…20BF67A8-D81A-4489-8225-FABAA0896E2D_is1) (Version: 1.7.1 – APOWERSOFT LIMITED)

Bonjour (HKLM…56DDDFB8-7F79-4480-89D5-25E1F52AB28F) (Version: 3.1.0.1 – Apple Inc.)

Bruteforce Save Data (HKLM-x32…Bruteforce Save Data) (Version:  – )

CCleaner (HKLM…CCleaner) (Version: 5.70 – Piriform)

CyberLink PowerDVD 12 (HKLM-x32…InstallShield_B46BEA36-0B71-4A4E-AE41-87241643FA0A) (Version: 12.0.5917.02 – CyberLink Corp.)

Defraggler (HKLM…Defraggler) (Version: 2.22 – Piriform)

Discord (HKUS-1-5-21-2794731821-2035859010-3306423656-1001…Discord) (Version: 0.0.306 – Discord Inc.)

Disk SpeedUp 5.0.1.63 (HKLM-x32…Disk SpeedUp) (Version: 5.0.1.63 – Glarysoft Ltd)

Dolphin (HKLM-x32…Dolphin) (Version: 5.0 – Dolphin Team)

DriverSetupUtility (HKLM…2B51C83A-465D-4EA9-9CDC-1ED95ED09AC6) (Version: 1.00.3019 – Acer Incorporated)

Google Chrome (HKLM-x32…Google Chrome) (Version: 84.0.4147.105 – Google LLC)

Google Update Helper (HKLM-x32…60EC980A-BDA2-4CB6-A427-B07A5498B4CA) (Version: 1.3.35.451 – Google LLC) Hidden

Intel Driver && Support Assistant (HKLM-x32…4752D5B7-5943-4607-97E3-683A534A7660) (Version: 20.8.30.6 – Intel) Hidden

Intel GFX Driver (HKLM-x32…ca0ebadf-f7bd-4e32-9fec-e19a5d68c724) (Version: 1.0.0.0 – Intel) Hidden

Intel® Chipset Device Software (HKLM-x32…bb0592a7-5772-4736-9d55-2402740085db) (Version: 10.1.1.38 – Intel® Corporation) Hidden

Intel® Computing Improvement Program (HKLM…44C40B2E-7285-4A9F-A9BC-DF433772AAEE) (Version: 2.4.05929 – Intel Corporation)

Intel® Graphics Driver Software (HKLM-x32…d7a872bf-e69e-4300-8537-086dc6abbf23) (Version: 3.11.1.0 – Intel) Hidden

Intel® Management Engine Components (HKLM…1CEAC85D-2590-4760-800F-8DE5E91F3700) (Version: 11.6.0.1025 – Intel Corporation)

Intel® Rapid Storage Technology (HKLM…409CB30E-E457-4008-9B1A-ED1B9EA21140) (Version: 16.8.3.1003 – Intel Corporation)

Intel® Serial IO (HKLM…9FD91C5C-44AE-4D9D-85BE-AE52816B0294) (Version: 30.100.1633.3 – Intel Corporation)

Intel® Driver & Support Assistant (HKLM-x32…b923700d-9685-4e50-9402-492140d10d13) (Version: 20.8.30.6 – Intel)

Malwarebytes version 4.1.2.73 (HKLM…35065F43-4BB2-439A-BFF7-0F1014F2E0CD_is1) (Version: 4.1.2.73 – Malwarebytes)

Microsoft Edge (HKLM-x32…Microsoft Edge) (Version: 84.0.522.52 – Microsoft Corporation)

Microsoft Edge Update (HKLM-x32…Microsoft Edge Update) (Version: 1.3.133.5 – )

Microsoft Visual C++ 2005 Redistributable (HKLM-x32…710f4c1c-cc18-4c49-8cbf-51240c89a1a2) (Version: 8.0.61001 – Microsoft Corporation)

Microsoft Visual C++ 2008 Redistributable – x86 9.0.30729.4148 (HKLM-x32…1F1C2DFC-2D24-3E06-BCB8-725134ADF989) (Version: 9.0.30729.4148 – Microsoft Corporation)

Microsoft Visual C++ 2012 Redistributable (x86) – 11.0.61030 (HKLM-x32…33d1fd90-4274-48a1-9bc1-97e33d9c2d6f) (Version: 11.0.61030.0 – Microsoft Corporation)

Microsoft Visual C++ 2015 Redistributable (x86) – 14.0.24215 (HKLM-x32…e2803110-78b3-4664-a479-3611a381656a) (Version: 14.0.24215.1 – Microsoft Corporation)

Microsoft Visual C++ 2015-2019 Redistributable (x64) – 14.25.28508 (HKLM-x32…6913e92a-b64e-41c9-a5e6-cef39207fe89) (Version: 14.25.28508.3 – Microsoft Corporation)

Microsoft Xbox 360 Accessories 1.2 (HKLM…D9C50188-12D5-4D3E-8F00-682346C2AA5F) (Version: 1.20.146.0 – Microsoft)

Mozilla Firefox 79.0 (x64 en-US) (HKLM…Mozilla Firefox 79.0 (x64 en-US)) (Version: 79.0 – Mozilla)

Mozilla Maintenance Service (HKLM…MozillaMaintenanceService) (Version: 60.0.2 – Mozilla)

Norton Security Suite (HKLM-x32…NGC) (Version: 22.20.5.39 – Symantec Corporation)

PCSX2 – Playstation 2 Emulator (HKLM-x32…pcsx2) (Version:  – )

Qualcomm Atheros 11ac Wireless LAN Installer (HKLM-x32…20CA507E-24AA-4741-87CF-CC1B250790B7) (Version: 11.0.10388 – Qualcomm Atheros)

Qualcomm Atheros Bluetooth Installer (64) (HKLM…628988B4-3FA5-4EA6-BAA3-DA640F6718BD) (Version: 10.0.0.278 – Qualcomm Atheros)

Realtek Card Reader (HKLM-x32…5BC2B5AB-80DE-4E83-B8CF-426902051D0A) (Version: 10.0.15063.21299 – Realtek Semiconductor Corp.)

Realtek Ethernet Controller Driver (HKLM-x32…8833FFB6-5B0C-4764-81AA-06DFEED9A476) (Version: 10.10.714.2016 – Realtek)

Realtek High Definition Audio Driver (HKLM-x32…F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC) (Version: 6.0.1.8569 – Realtek Semiconductor Corp.)

RogueKiller version 14.6.3.0 (HKLM…8B3D7924-ED89-486B-8322-E8594065D5CB_is1) (Version: 14.6.3.0 – Adlice Software)

ShadowExplorer 0.9 (HKLM-x32…ShadowExplorer_is1) (Version: 0.9.462.0 – ShadowExplorer.com)

Spotify (HKUS-1-5-21-2794731821-2035859010-3306423656-1001…Spotify) (Version: 1.1.36.734.g8731c306 – Spotify AB)

SWF File Player (HKLM-x32…6A86F611-906C-422D-B34A-103662CBC195_is1) (Version:  – swffileplayer.com)

Update for Windows 10 for x64-based Systems (KB4023057) (HKLM…16AD6161-2E47-4BF1-AA77-0946EFE93E08) (Version: 2.61.0.0 – Microsoft Corporation)

VLC media player (HKLM-x32…VLC media player) (Version: 3.0.8 – VideoLAN)

VSDC Free Video Editor version 6.4.5.140 (HKLM…VSDC Free Video Editor_is1) (Version: 6.4.5.140 – Flash-Integro LLC)

Vulkan Run Time Libraries 1.0.33.0 (HKLM…VulkanRT1.0.33.0) (Version: 1.0.33.0 – LunarG, Inc.)

Vulkan Run Time Libraries 1.0.61.0 (HKLM…VulkanRT1.0.61.0) (Version: 1.0.61.0 – LunarG, Inc.) Hidden

Vulkan Run Time Libraries 1.0.61.0 (HKLM…VulkanRT1.0.61.0-6) (Version: 1.0.61.0 – LunarG, Inc.) Hidden

Vulkan Run Time Libraries 1.0.61.0 (HKLM…VulkanRT1.0.61.0-7) (Version: 1.0.61.0 – LunarG, Inc.) Hidden

WinCDEmu (HKLM-x32…WinCDEmu) (Version: 4.1 – Sysprogs)

WinRAR 5.40 (64-bit) (HKLM…WinRAR archiver) (Version: 5.40.0 – win.rar GmbH)

Zemana AntiMalware version 3.2.27 (HKLM-x32…4E1F3677-C72E-4F7D-B66E-85467B1A289E_is1) (Version: 3.2.27 – Zemana Ltd.)

 

Packages:

=========

Facebook -> C:Program FilesWindowsAppsFacebook.Facebook_186.2619.19263.0_x86__8xx8rvfyw5nnt [2019-10-13] (Facebook Inc)

Intel® Graphics Command Center -> C:Program FilesWindowsAppsAppUp.IntelGraphicsExperience_1.100.2731.0_x64__8j3eq9eme6ctt [2020-06-09] (INTEL CORP) [Startup Task]

Intel® Graphics Control Panel -> C:Program FilesWindowsAppsAppUp.IntelGraphicsControlPanel_3.3.0.0_x64__8j3eq9eme6ctt [2020-02-18] (INTEL CORP)

Microsoft Advertising SDK for XAML -> C:Program FilesWindowsAppsMicrosoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2019-01-10] (Microsoft Corporation) [MS Ad]

Microsoft Advertising SDK for XAML -> C:Program FilesWindowsAppsMicrosoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2019-01-10] (Microsoft Corporation) [MS Ad]

Microsoft Solitaire Collection -> C:Program FilesWindowsAppsMicrosoft.MicrosoftSolitaireCollection_4.7.8042.0_x64__8wekyb3d8bbwe [2020-08-07] (Microsoft Studios) [MS Ad]

MSN Weather -> C:Program FilesWindowsAppsMicrosoft.BingWeather_4.36.20714.0_x64__8wekyb3d8bbwe [2020-03-24] (Microsoft Corporation) [MS Ad]

MusicBee -> C:Program FilesWindowsApps50072StevenMayall.MusicBee_3.3.7.0_x86__kcr266et74avj [2020-07-09] (Steven Mayall)

Netflix -> C:Program FilesWindowsApps4DF9E0F8.Netflix_6.97.752.0_x64__mcm4njqhnhss8 [2020-07-14] (Netflix, Inc.)

Photos Add-on -> C:Program FilesWindowsAppsMicrosoft.Windows.Photos.DLC.Main_2017.39121.36610.0_x64__8wekyb3d8bbwe [2018-11-02] (Microsoft Corporation)

Photos Media Engine Add-on -> C:Program FilesWindowsAppsMicrosoft.Photos.MediaEngineDLC_1.0.0.0_x64__8wekyb3d8bbwe [2019-09-13] (Microsoft Corporation)

Sling TV -> C:Program FilesWindowsAppsSlingTVLLC.SlingTV_7.0.8.0_x86__vgszm6stshdqy [2019-01-10] (Sling TV LLC)

Twitter -> C:Program FilesWindowsApps9E2F88E3.Twitter_6.1.4.1000_neutral__wgeqdkkx372wm [2018-09-08] (Twitter Inc.)

Video Editor & Slideshow Maker -> C:Program FilesWindowsApps23140Kinderjoy.VideoEditorSlideshowMaker_1.1.160.0_x64__4k9s1t26vykqt [2019-06-27] (Video Apps Mechanic) [MS Ad]

 

==================== Custom CLSID (Whitelisted): ==============

 

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

 

CustomCLSID: HKUS-1-5-21-2794731821-2035859010-3306423656-1001_ClassesCLSID1BF42E4C-4AF4-4CFD-A1A0-CF2960B8F63EInprocServer32 -> C:UsersRyanAppDataLocalMicrosoftOneDrive18.222.1104.0007amd64FileSyncShell64.dll => No File

CustomCLSID: HKUS-1-5-21-2794731821-2035859010-3306423656-1001_ClassesCLSID233525e0-5434-46ef-b464-fd7e45e2e145localserver32 -> C:Program Files (x86)IntelDriver and Support AssistantDSATray.exe (IDSA Production signing key -> Intel)

CustomCLSID: HKUS-1-5-21-2794731821-2035859010-3306423656-1001_ClassesCLSID7AFDFDDB-F914-11E4-8377-6C3BE50D980CInprocServer32 -> C:UsersRyanAppDataLocalMicrosoftOneDrive18.222.1104.0007amd64FileSyncShell64.dll => No File

CustomCLSID: HKUS-1-5-21-2794731821-2035859010-3306423656-1001_ClassesCLSID82CA8DE3-01AD-4CEA-9D75-BE4C51810A9EInprocServer32 -> C:UsersRyanAppDataLocalMicrosoftOneDrive18.222.1104.0007amd64FileSyncShell64.dll => No File

ShellIconOverlayIdentifiers: [  OverlayExcluded] -> 4433A54A-1AC8-432F-90FC-85F045CF383C => C:Program Files (x86)Norton Security SuiteEngine22.20.5.39buShell.dll [2020-07-23] (NortonLifeLock Inc. -> NortonLifeLock Inc.)

ShellIconOverlayIdentifiers: [  OverlayPending] -> F17C0B1E-EF8E-4AD4-8E1B-7D7E8CB23225 => C:Program Files (x86)Norton Security SuiteEngine22.20.5.39buShell.dll [2020-07-23] (NortonLifeLock Inc. -> NortonLifeLock Inc.)

ShellIconOverlayIdentifiers: [  OverlayProtected] -> 476D0EA3-80F9-48B5-B70B-05E677C9C148 => C:Program Files (x86)Norton Security SuiteEngine22.20.5.39buShell.dll [2020-07-23] (NortonLifeLock Inc. -> NortonLifeLock Inc.)

ShellIconOverlayIdentifiers: [ OneDrive1] -> BBACC218-34EA-4666-9D7A-C78F2274A524 =>  -> No File

ShellIconOverlayIdentifiers: [ OneDrive2] -> 5AB7172C-9C11-405C-8DD5-AF20F3606282 =>  -> No File

ShellIconOverlayIdentifiers: [ OneDrive3] -> A78ED123-AB77-406B-9962-2A5D9D2F7F30 =>  -> No File

ShellIconOverlayIdentifiers: [ OneDrive4] -> F241C880-6982-4CE5-8CF7-7085BA96DA5A =>  -> No File

ShellIconOverlayIdentifiers: [ OneDrive5] -> A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E =>  -> No File

ShellIconOverlayIdentifiers: [ OneDrive6] -> 9AA2F32D-362A-42D9-9328-24A483E2CCC3 =>  -> No File

ShellIconOverlayIdentifiers: [ OneDrive7] -> C5FF006E-2AE9-408C-B85B-2DFDD5449D9C =>  -> No File

ShellIconOverlayIdentifiers: [00asw] -> 472083B0-C522-11CF-8763-00608CC02F24 =>  -> No File

ShellIconOverlayIdentifiers-x32: [  OverlayExcluded] -> 4433A54A-1AC8-432F-90FC-85F045CF383C => C:Program Files (x86)Norton Security SuiteEngine22.20.5.39buShell.dll [2020-07-23] (NortonLifeLock Inc. -> NortonLifeLock Inc.)

ShellIconOverlayIdentifiers-x32: [  OverlayPending] -> F17C0B1E-EF8E-4AD4-8E1B-7D7E8CB23225 => C:Program Files (x86)Norton Security SuiteEngine22.20.5.39buShell.dll [2020-07-23] (NortonLifeLock Inc. -> NortonLifeLock Inc.)

ShellIconOverlayIdentifiers-x32: [  OverlayProtected] -> 476D0EA3-80F9-48B5-B70B-05E677C9C148 => C:Program Files (x86)Norton Security SuiteEngine22.20.5.39buShell.dll [2020-07-23] (NortonLifeLock Inc. -> NortonLifeLock Inc.)

ShellIconOverlayIdentifiers-x32: [ OneDrive1] -> BBACC218-34EA-4666-9D7A-C78F2274A524 =>  -> No File

ShellIconOverlayIdentifiers-x32: [ OneDrive2] -> 5AB7172C-9C11-405C-8DD5-AF20F3606282 =>  -> No File

ShellIconOverlayIdentifiers-x32: [ OneDrive3] -> A78ED123-AB77-406B-9962-2A5D9D2F7F30 =>  -> No File

ShellIconOverlayIdentifiers-x32: [ OneDrive4] -> F241C880-6982-4CE5-8CF7-7085BA96DA5A =>  -> No File

ShellIconOverlayIdentifiers-x32: [ OneDrive5] -> A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E =>  -> No File

ShellIconOverlayIdentifiers-x32: [ OneDrive6] -> 9AA2F32D-362A-42D9-9328-24A483E2CCC3 =>  -> No File

ShellIconOverlayIdentifiers-x32: [ OneDrive7] -> C5FF006E-2AE9-408C-B85B-2DFDD5449D9C =>  -> No File

ContextMenuHandlers1: [2.0 Zemana AntiMalware] -> 6ABB1C11-E261-4CEA-BBB5-3836225689DD => C:Program Files (x86)ZemanaAntiMalwareAM_ShellExt64.dll [2020-07-29] (Zemana D.O.O. Sarajevo -> Advanced Malware Protection. Copyright 2019.)

ContextMenuHandlers1: [BUContextMenu] -> F7CAA2A1-67A2-44BB-B20F-202FD8EB1DAB => C:Program Files (x86)Norton Security SuiteEngine22.20.5.39buShell.dll [2020-07-23] (NortonLifeLock Inc. -> NortonLifeLock Inc.)

ContextMenuHandlers1: [DefragglerShellExtension] -> 4380C993-0C43-4E02-9A7A-0D40B6EA7590 => C:Program FilesDefragglerDefragglerShell64.dll [2018-05-02] (Piriform Ltd -> Piriform Ltd)

ContextMenuHandlers1: [NortonLifeLock.Norton.Antivirus.IEContextMenu] -> FAD61B3D-699D-49B2-BE16-7F82CB4C59CA => C:Program Files (x86)Norton Security SuiteEngine22.20.5.39NavShExt.dll [2020-07-23] (NortonLifeLock Inc. -> NortonLifeLock Inc.)

ContextMenuHandlers1: [WinCDEmu] -> D0E37FD2-F675-426F-B09A-2CF37BA46FD5 => C:Program Files (x86)WinCDEmux64WinCDEmuContextMenu.dll [2015-09-28] (Sysprogs OU) [File not signed]

ContextMenuHandlers1: [WinRAR] -> B41DB860-64E4-11D2-9906-E49FADC173CA => C:Program FilesWinRARrarext.dll [2016-08-15] (win.rar GmbH -> Alexander Roshal)

ContextMenuHandlers1-x32: [WinRAR32] -> B41DB860-8EE4-11D2-9906-E49FADC173CA => C:Program FilesWinRARrarext32.dll [2016-08-15] (win.rar GmbH -> Alexander Roshal)

ContextMenuHandlers1: [WondershareVideoConverterFileOpreation] -> FEB746CA-95C2-485F-B386-C30D4E56D22E =>  -> No File

ContextMenuHandlers2: [NortonLifeLock.Norton.Antivirus.IEContextMenu] -> FAD61B3D-699D-49B2-BE16-7F82CB4C59CA => C:Program Files (x86)Norton Security SuiteEngine22.20.5.39NavShExt.dll [2020-07-23] (NortonLifeLock Inc. -> NortonLifeLock Inc.)

ContextMenuHandlers2: [WinCDEmu] -> A9901FCD-B4DF-43A1-BD5D-6C9F88679497 => C:Program Files (x86)WinCDEmux64WinCDEmuContextMenu.dll [2015-09-28] (Sysprogs OU) [File not signed]

ContextMenuHandlers3: [MBAMShlExt] -> 57CE581A-0CB6-4266-9CA0-19364C90A0B3 => C:Program FilesMalwarebytesAnti-Malwarembshlext.dll [2019-06-26] (Malwarebytes Corporation -> Malwarebytes)

ContextMenuHandlers6: [2.0 Zemana AntiMalware] -> 6ABB1C11-E261-4CEA-BBB5-3836225689DD => C:Program Files (x86)ZemanaAntiMalwareAM_ShellExt64.dll [2020-07-29] (Zemana D.O.O. Sarajevo -> Advanced Malware Protection. Copyright 2019.)

ContextMenuHandlers6: [BUContextMenu] -> F7CAA2A1-67A2-44BB-B20F-202FD8EB1DAB => C:Program Files (x86)Norton Security SuiteEngine22.20.5.39buShell.dll [2020-07-23] (NortonLifeLock Inc. -> NortonLifeLock Inc.)

ContextMenuHandlers6: [DefragglerShellExtension] -> 4380C993-0C43-4E02-9A7A-0D40B6EA7590 => C:Program FilesDefragglerDefragglerShell64.dll [2018-05-02] (Piriform Ltd -> Piriform Ltd)

ContextMenuHandlers6: [MBAMShlExt] -> 57CE581A-0CB6-4266-9CA0-19364C90A0B3 => C:Program FilesMalwarebytesAnti-Malwarembshlext.dll [2019-06-26] (Malwarebytes Corporation -> Malwarebytes)

ContextMenuHandlers6: [NortonLifeLock.Norton.Antivirus.IEContextMenu] -> FAD61B3D-699D-49B2-BE16-7F82CB4C59CA => C:Program Files (x86)Norton Security SuiteEngine22.20.5.39NavShExt.dll [2020-07-23] (NortonLifeLock Inc. -> NortonLifeLock Inc.)

ContextMenuHandlers6: [WinCDEmu] -> A9901FCD-B4DF-43A1-BD5D-6C9F88679497 => C:Program Files (x86)WinCDEmux64WinCDEmuContextMenu.dll [2015-09-28] (Sysprogs OU) [File not signed]

ContextMenuHandlers6: [WinRAR] -> B41DB860-64E4-11D2-9906-E49FADC173CA => C:Program FilesWinRARrarext.dll [2016-08-15] (win.rar GmbH -> Alexander Roshal)

ContextMenuHandlers6-x32: [WinRAR32] -> B41DB860-8EE4-11D2-9906-E49FADC173CA => C:Program FilesWinRARrarext32.dll [2016-08-15] (win.rar GmbH -> Alexander Roshal)

 

==================== Codecs (Whitelisted) ====================

 

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

 

HKLM…Drivers32: [msacm.voxacm160] => C:WINDOWSsystem32vct3216.acm [82944 2003-05-21] (Voxware, Inc.) [File not signed]

HKLM…Drivers32: [msacm.scg726] => C:WINDOWSsystem32scg726.acm [13239 2000-03-14] (SHARP Corporation) [File not signed]

HKLM…Drivers32: [msacm.alf2cd] => C:WINDOWSsystem32alf2cd.acm [38912 2003-05-21] (NCT Company) [File not signed]

HKLM…Drivers32: [msacm.ac3acm] => C:WINDOWSsystem32AC3ACM.acm [81920 2004-02-04] (fccHandler) [File not signed]

HKLM…Drivers32: [msacm.lame] => C:WINDOWSsystem32lame.ax [245760 2005-08-01] () [File not signed]

HKLM…Drivers32: [vidc.dvsd] => C:WINDOWSsystem32mcdvd_32.dll [261632 2003-05-21] (MainConcept) [File not signed]

HKLM…Drivers32: [vidc.mpg4] => C:WINDOWSsystem32mpg4c32.dll [413760 2002-08-19] (Microsoft Corporation) [File not signed]

HKLM…Drivers32: [vidc.mp42] => C:WINDOWSsystem32mpg4c32.dll [413760 2002-08-19] (Microsoft Corporation) [File not signed]

HKLM…Drivers32: [vidc.mp43] => C:WINDOWSsystem32mpg4c32.dll [413760 2002-08-19] (Microsoft Corporation) [File not signed]

HKLM…Drivers32: [vidc.xvid] => C:WINDOWSsystem32xvidvfw.dll [139264 2004-07-03] () [File not signed]

HKLM…Drivers32: [vidc.DIVX] => C:WINDOWSsystem32DivX.dll [638976 2003-05-22] (DivXNetworks, Inc.) [File not signed]

HKLM…Drivers32: [vidc.VP60] => C:WINDOWSsystem32vp6vfw.dll [438272 2004-12-10] (On2.com) [File not signed]

HKLM…Drivers32: [vidc.VP61] => C:WINDOWSsystem32vp6vfw.dll [438272 2004-12-10] (On2.com) [File not signed]

HKLM…Drivers32: [vidc.VP62] => C:WINDOWSsystem32vp6vfw.dll [438272 2004-12-10] (On2.com) [File not signed]

HKLM…Drivers32: [vidc.LAGS] => C:WINDOWSsystem32lagarith.dll [216064 2011-12-07] () [File not signed]

 

==================== Shortcuts & WMI ========================

 

==================== Loaded Modules (Whitelisted) =============

 

2020-06-09 16:43 – 2020-06-09 16:43 – 039780864 _____ (Intel) [File not signed] C:Program FilesWindowsAppsAppUp.IntelGraphicsExperience_1.100.2731.0_x64__8j3eq9eme6cttIGCC.dll

2020-06-16 17:28 – 2020-06-16 17:28 – 001918464 _____ (SQLite Development Team) [File not signed] C:Program FilesIntelSURQUEENCREEKx64sqlite3.dll

 

==================== Alternate Data Streams (Whitelisted) ========

 

==================== Safe Mode (Whitelisted) ==================

 

(If an entry is included in the fixlist, it will be removed from the registry. The “AlternateShell” will be restored.)

 

HKLMSYSTEMCurrentControlSetControlSafeBootMinimalamsdk.sys => “”=”Driver”

HKLMSYSTEMCurrentControlSetControlSafeBootMinimalMBAMService => “”=”Service”

HKLMSYSTEMCurrentControlSetControlSafeBootNetworkamsdk.sys => “”=”Driver”

HKLMSYSTEMCurrentControlSetControlSafeBootNetworkMBAMService => “”=”Service”

 

==================== Association (Whitelisted) =================

 

==================== Internet Explorer trusted/restricted ==========

 

(If an entry is included in the fixlist, it will be removed from the registry.)

 

IE trusted site: HKUS-1-5-21-2794731821-2035859010-3306423656-1001…localhost -> localhost

IE trusted site: HKUS-1-5-21-2794731821-2035859010-3306423656-1001…webcompanion.com -> hxxp://webcompanion.com

 

==================== Hosts content: =========================

 

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

 

2016-07-16 07:47 – 2016-07-16 07:45 – 000000824 _____ C:WINDOWSsystem32driversetchosts

 

==================== Other Areas ===========================

 

(Currently there is no automatic fix for this section.)

 

HKLMSystemCurrentControlSetControlSession ManagerEnvironment\Path -> C:Program Files (x86)InteliCLS Client;C:Program FilesInteliCLS Client;%SystemRoot%system32;%SystemRoot%;%SystemRoot%System32Wbem;%SYSTEMROOT%System32WindowsPowerShellv1.0;C:Program Files (x86)IntelIntel® Management Engine ComponentsDAL;C:Program FilesIntelIntel® Management Engine ComponentsDAL;C:Program Files (x86)IntelIntel® Management Engine ComponentsIPT;C:Program FilesIntelIntel® Management Engine ComponentsIPT;%SYSTEMROOT%System32OpenSSH

HKUS-1-5-21-2794731821-2035859010-3306423656-1001Control PanelDesktop\Wallpaper -> C:UsersRyanAppDataRoamingMozillaFirefoxDesktop Background.bmp

DNS Servers: Media is not connected to internet.

HKLMSOFTWAREMicrosoftWindowsCurrentVersionPoliciesSystem => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)

HKLMSOFTWAREMicrosoftWindowsCurrentVersionExplorer => (SmartScreenEnabled: RequireAdmin)

Windows Firewall is enabled.

 

==================== MSCONFIG/TASK MANAGER disabled items ==

 

(If an entry is included in the fixlist, it will be removed.)

 

MSCONFIGServices: AdobeARMservice => 2

MSCONFIGServices: AtherosSvc => 2

MSCONFIGServices: Bonjour Service => 2

MSCONFIGServices: cphs => 3

MSCONFIGServices: cplspcon => 2

MSCONFIGServices: Ds3Service => 2

MSCONFIGServices: DSAService => 2

MSCONFIGServices: DSAUpdateService => 3

MSCONFIGServices: GoogleChromeElevationService => 3

MSCONFIGServices: gupdate => 2

MSCONFIGServices: gupdatem => 3

MSCONFIGServices: IAStorDataMgrSvc => 2

MSCONFIGServices: ICEsoundService => 2

MSCONFIGServices: igfxCUIService2.0.0.0 => 2

MSCONFIGServices: Intel® Capability Licensing Service TCP IP Interface => 3

MSCONFIGServices: Intel® SUR QC SAM => 3

MSCONFIGServices: jhi_service => 2

MSCONFIGServices: LMS => 2

MSCONFIGServices: MozillaMaintenance => 3

MSCONFIGServices: QALSvc => 3

MSCONFIGServices: QASvc => 3

MSCONFIGServices: WsAppService => 2

HKLM…StartupApprovedRun: => “SecurityHealth”

HKLM…StartupApprovedRun: => “RTHDVCPL”

HKLM…StartupApprovedRun: => “RtHDVBg_TrueHarmony”

HKLM…StartupApprovedRun: => “iTunesHelper”

HKLM…StartupApprovedRun: => “IAStorIcon”

HKLM…StartupApprovedRun: => “XboxStat”

HKLM…StartupApprovedRun32: => “BrowserPlugInHelper”

HKLM…StartupApprovedRun32: => “Intel Driver & Support Assistant”

HKUS-1-5-21-2794731821-2035859010-3306423656-1001…StartupApprovedRun: => “OneDrive”

HKUS-1-5-21-2794731821-2035859010-3306423656-1001…StartupApprovedRun: => “CCleaner Monitoring”

HKUS-1-5-21-2794731821-2035859010-3306423656-1001…StartupApprovedRun: => “CCleaner Smart Cleaning”

HKUS-1-5-21-2794731821-2035859010-3306423656-1001…StartupApprovedRun: => “Discord”

HKUS-1-5-21-2794731821-2035859010-3306423656-1001…StartupApprovedRun: => “Web Companion”

HKUS-1-5-21-2794731821-2035859010-3306423656-1001…StartupApprovedRun: => “utweb”

 

==================== FirewallRules (Whitelisted) ================

 

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

 

FirewallRules: [ABA28129-E6C5-4252-AF51-DCE04FAE8096] => (Allow) C:Program FilesFlashIntegroVideoEditorUpdater.exe (Vector -> Flash-Integro LLC)

FirewallRules: [16E07E4A-6BD2-4A90-9D6C-AF5284B7EFE2] => (Allow) C:Program FilesFlashIntegroVideoEditorUpdater.exe (Vector -> Flash-Integro LLC)

FirewallRules: [37DA7DE1-224F-49C6-BB89-013B385FEC59] => (Allow) C:Program FilesFlashIntegroVideoEditorActivation.exe (Vector -> Flash-Integro LLC)

FirewallRules: [49C126FD-A4CA-47A6-872B-039A2F508161] => (Allow) C:Program FilesFlashIntegroVideoEditorActivation.exe (Vector -> Flash-Integro LLC)

FirewallRules: [833A2ACD-60EE-42E0-B9B0-F526122F8271] => (Allow) C:Program FilesFlashIntegroVideoEditorVideoEditor.exe (Flash-Integro LLC) [File not signed]

FirewallRules: [BDFC6115-D88D-4A01-8018-4327BFA33523] => (Allow) C:Program FilesFlashIntegroVideoEditorVideoEditor.exe (Flash-Integro LLC) [File not signed]

FirewallRules: [2B80B5AA-BC89-4340-A044-B62C5319C89E] => (Allow) C:Program FilesMozilla Firefoxfirefox.exe (Mozilla Corporation -> Mozilla Corporation)

FirewallRules: [5FB9B543-F893-46D8-93D7-667EBA09F1E6] => (Allow) C:Program FilesMozilla Firefoxfirefox.exe (Mozilla Corporation -> Mozilla Corporation)

FirewallRules: [UDP Query User13246E22-7FE3-42D6-9F7F-FCCEFEC02764C:usersryanappdataroamingspotifyspotify.exe] => (Allow) C:usersryanappdataroamingspotifyspotify.exe (Spotify AB -> Spotify Ltd)

FirewallRules: [TCP Query User11507976-29F7-4854-9EDF-78554F616EE4C:usersryanappdataroamingspotifyspotify.exe] => (Allow) C:usersryanappdataroamingspotifyspotify.exe (Spotify AB -> Spotify Ltd)

FirewallRules: [068FC24E-C88F-49C9-81B8-33E21B5C274D] => (Allow) C:Program Files (x86)CyberLinkPowerDVD12MoviePowerDVD.exe (CyberLink Corp. -> CyberLink Corp.)

FirewallRules: [32D4531C-BD6F-4C43-BBCA-B303F88EDF17] => (Allow) C:Program Files (x86)CyberLinkPowerDVD12PowerDVD12ML.exe (CyberLink Corp. -> CyberLink Corp.)

FirewallRules: [5691FC67-FA70-4B14-BCC2-086CF1A00F1B] => (Allow) C:UsersRyanAppDataRoaminguTorrentuTorrent.exe => No File

FirewallRules: [4C559027-0F85-4E91-A957-C4487B50301A] => (Allow) C:UsersRyanAppDataRoaminguTorrentuTorrent.exe => No File

FirewallRules: [D7546AB0-E411-4638-9942-8997A9434BE9] => (Allow) C:Program Files (x86)GoogleChromeApplicationchrome.exe (Google LLC -> Google LLC)

FirewallRules: [AB82E469-7E66-456B-8324-388D44A219D3] => (Allow) C:Program FilesWindowsAppsMicrosoft.SkypeApp_15.63.76.0_x86__kzf8qxf38zg5cSkypeSkype.exe (Skype Software Sarl -> Skype Technologies S.A.)

FirewallRules: [AE238E20-562A-4F4A-9775-31BB08153E2D] => (Allow) C:Program FilesWindowsAppsMicrosoft.SkypeApp_15.63.76.0_x86__kzf8qxf38zg5cSkypeSkype.exe (Skype Software Sarl -> Skype Technologies S.A.)

FirewallRules: [5D817C1A-E583-4558-968D-128743B799C6] => (Allow) C:Program FilesWindowsAppsMicrosoft.SkypeApp_15.63.76.0_x86__kzf8qxf38zg5cSkypeSkype.exe (Skype Software Sarl -> Skype Technologies S.A.)

FirewallRules: [989E94F6-7AB9-4D4C-AD07-C0378198E57C] => (Allow) C:Program FilesWindowsAppsMicrosoft.SkypeApp_15.63.76.0_x86__kzf8qxf38zg5cSkypeSkype.exe (Skype Software Sarl -> Skype Technologies S.A.)

FirewallRules: [E3DBEF39-4DFE-44DA-8F9D-3E4D8BCC59CC] => (Block) C:Program FilesIntelSURQUEENCREEKx64esrv_svc.exe (Intel® Software Development Products -> )

FirewallRules: [1E13E205-D5F1-4772-B92C-2464E4B6C724] => (Block) C:Program FilesIntelSURQUEENCREEKx64esrv_svc.exe (Intel® Software Development Products -> )

FirewallRules: [F58DDC78-E497-4BBE-B53D-33BAE2003A06] => (Allow) C:Program FilesIntelSURQUEENCREEKx64esrv_svc.exe (Intel® Software Development Products -> )

FirewallRules: [6928575D-776C-4672-A6D1-0781873B7111] => (Allow) C:Program FilesIntelSURQUEENCREEKx64esrv_svc.exe (Intel® Software Development Products -> )

 

==================== Restore Points =========================

 

09-08-2020 03:03:28 Windows Modules Installer

 

==================== Faulty Device Manager Devices ============

 

 

==================== Event log errors: ========================

 

Application errors:

==================

Error: (08/10/2020 09:05:22 AM) (Source: AntiMalware) (EventID: 0) (User: )

Description: Application has encountered a problem and needs to be closed. Please contact the adminstrator with the following information:

 

System.ComponentModel.Win32Exception (0x80004005): Error creating window handle.

   at System.Windows.Forms.NativeWindow.CreateHandle(CreateParams cp)

   at System.Windows.Forms.Control.CreateHandle()

   at System.Windows.Forms.Control.CreateControl(Boolean fIgnoreVisible)

   at System.Windows.Forms.Control.CreateControl(Boolean fIgnoreVisible)

   at System.Windows.Forms.Control.CreateControl()

   at System.Windows.Forms.Control.ControlCollection.Add(Control value)

   at Zemana.AntiMalware.UI.Services.ScanPanelController.<>c__DisplayClass12_0.<AddScanFailedPanel>b__0(Panel pnl) in Z:ProjectsZemana AntiMalwareZemana.AntiMalware.UIServicesScanPanelController.cs:line 73Error creating window handle.

 

Stack Trace:

   at System.Windows.Forms.NativeWindow.CreateHandle(CreateParams cp)

   at System.Windows.Forms.Control.CreateHandle()

   at System.Windows.Forms.Control.CreateControl(Boolean fIgnoreVisible)

   at System.Windows.Forms.Control.CreateControl(Boolean fIgnoreVisible)

   at System.Windows.Forms.Control.CreateControl()

   at System.Windows.Forms.Control.ControlCollection.Add(Control value)

   at Zemana.AntiMalware.UI.Services.ScanPanelController.<>c__DisplayClass12_0.<AddScanFailedPanel>b__0(Panel pnl) in Z:ProjectsZemana AntiMalwareZemana.AntiMalware.UIServicesScanPanelController.cs:line 73

 

Error: (08/10/2020 08:50:30 AM) (Source: AntiMalware) (EventID: 0) (User: )

Description: Application has encountered a problem and needs to be closed. Please contact the adminstrator with the following information:

 

System.ComponentModel.Win32Exception (0x80004005): Error creating window handle.

   at System.Windows.Forms.NativeWindow.CreateHandle(CreateParams cp)

   at System.Windows.Forms.Control.CreateHandle()

   at System.Windows.Forms.Control.CreateControl(Boolean fIgnoreVisible)

   at System.Windows.Forms.Control.CreateControl(Boolean fIgnoreVisible)

   at System.Windows.Forms.Control.CreateControl()

   at System.Windows.Forms.Control.ControlCollection.Add(Control value)

   at Zemana.AntiMalware.UI.Services.ScanPanelController.<>c__DisplayClass12_0.<AddScanFailedPanel>b__0(Panel pnl) in Z:ProjectsZemana AntiMalwareZemana.AntiMalware.UIServicesScanPanelController.cs:line 73Error creating window handle.

 

Stack Trace:

   at System.Windows.Forms.NativeWindow.CreateHandle(CreateParams cp)

   at System.Windows.Forms.Control.CreateHandle()

   at System.Windows.Forms.Control.CreateControl(Boolean fIgnoreVisible)

   at System.Windows.Forms.Control.CreateControl(Boolean fIgnoreVisible)

   at System.Windows.Forms.Control.CreateControl()

   at System.Windows.Forms.Control.ControlCollection.Add(Control value)

   at Zemana.AntiMalware.UI.Services.ScanPanelController.<>c__DisplayClass12_0.<AddScanFailedPanel>b__0(Panel pnl) in Z:ProjectsZemana AntiMalwareZemana.AntiMalware.UIServicesScanPanelController.cs:line 73

 

Error: (08/10/2020 08:45:57 AM) (Source: Microsoft-Windows-PerfNet) (EventID: 2004) (User: LAPTOP-G530781F)

Description: Unable to open the Server service performance object. The first four bytes (DWORD) of the Data section contains the status code.

 

Error: (08/10/2020 08:35:44 AM) (Source: VSS) (EventID: 8193) (User: )

Description: Volume Shadow Copy Service error: Unexpected error calling routine CoCreateInstance.  hr = 0x8007045b, A system shutdown is in progress.

.

 

Error: (08/10/2020 08:35:44 AM) (Source: VSS) (EventID: 13) (User: )

Description: Volume Shadow Copy Service information: The COM Server with CLSID 4e14fba2-2e22-11d1-9964-00c04fbbb345 and name CEventSystem cannot be started. [0x8007045b, A system shutdown is in progress.

]

 

Error: (08/10/2020 08:35:44 AM) (Source: VSS) (EventID: 8193) (User: )

Description: Volume Shadow Copy Service error: Unexpected error calling routine CoCreateInstance.  hr = 0x8007045b, A system shutdown is in progress.

.

 

Error: (08/10/2020 08:35:44 AM) (Source: VSS) (EventID: 13) (User: )

Description: Volume Shadow Copy Service information: The COM Server with CLSID 4e14fba2-2e22-11d1-9964-00c04fbbb345 and name CEventSystem cannot be started. [0x8007045b, A system shutdown is in progress.

]

 

Error: (08/10/2020 08:29:18 AM) (Source: AntiMalware) (EventID: 0) (User: )

Description: Application has encountered a problem and needs to be closed. Please contact the adminstrator with the following information:

 

System.ComponentModel.Win32Exception (0x80004005): Error creating window handle.

   at System.Windows.Forms.NativeWindow.CreateHandle(CreateParams cp)

   at System.Windows.Forms.Control.CreateHandle()

   at System.Windows.Forms.Control.CreateControl(Boolean fIgnoreVisible)

   at System.Windows.Forms.Control.CreateControl(Boolean fIgnoreVisible)

   at System.Windows.Forms.Control.CreateControl()

   at System.Windows.Forms.Control.ControlCollection.Add(Control value)

   at Zemana.AntiMalware.UI.Services.ScanPanelController.<>c__DisplayClass12_0.<AddScanFailedPanel>b__0(Panel pnl) in Z:ProjectsZemana AntiMalwareZemana.AntiMalware.UIServicesScanPanelController.cs:line 73Error creating window handle.

 

Stack Trace:

   at System.Windows.Forms.NativeWindow.CreateHandle(CreateParams cp)

   at System.Windows.Forms.Control.CreateHandle()

   at System.Windows.Forms.Control.CreateControl(Boolean fIgnoreVisible)

   at System.Windows.Forms.Control.CreateControl(Boolean fIgnoreVisible)

   at System.Windows.Forms.Control.CreateControl()

   at System.Windows.Forms.Control.ControlCollection.Add(Control value)

   at Zemana.AntiMalware.UI.Services.ScanPanelController.<>c__DisplayClass12_0.<AddScanFailedPanel>b__0(Panel pnl) in Z:ProjectsZemana AntiMalwareZemana.AntiMalware.UIServicesScanPanelController.cs:line 73

 

 

System errors:

=============

Error: (08/10/2020 09:40:49 AM) (Source: Service Control Manager) (EventID: 7000) (User: )

Description: The Software Protection service failed to start due to the following error: 

The service did not respond to the start or control request in a timely fashion.

 

Error: (08/10/2020 09:40:49 AM) (Source: Service Control Manager) (EventID: 7009) (User: )

Description: A timeout was reached (30000 milliseconds) while waiting for the Software Protection service to connect.

 

Error: (08/10/2020 08:42:37 AM) (Source: Service Control Manager) (EventID: 7000) (User: )

Description: The SystemUsageReportSvc_QUEENCREEK service failed to start due to the following error: 

The service did not respond to the start or control request in a timely fashion.

 

Error: (08/10/2020 08:42:37 AM) (Source: Service Control Manager) (EventID: 7009) (User: )

Description: A timeout was reached (45000 milliseconds) while waiting for the SystemUsageReportSvc_QUEENCREEK service to connect.

 

Error: (08/10/2020 08:41:41 AM) (Source: Service Control Manager) (EventID: 7000) (User: )

Description: The IntelSSTSvc service failed to start due to the following error: 

The system cannot find the file specified.

 

Error: (08/10/2020 07:11:29 AM) (Source: Service Control Manager) (EventID: 7022) (User: )

Description: The Security Center service hung on starting.

 

Error: (08/10/2020 07:09:24 AM) (Source: Service Control Manager) (EventID: 7022) (User: )

Description: The Update Orchestrator Service service hung on starting.

 

Error: (08/10/2020 07:09:18 AM) (Source: Service Control Manager) (EventID: 7011) (User: )

Description: A timeout (30000 milliseconds) was reached while waiting for a transaction response from the rkrtservice service.

 

 

CodeIntegrity:

===================================

 

Date: 2020-08-10 08:46:38.1190000Z

Description: 

Code Integrity determined that a process (DeviceHarddiskVolume3WindowsSystem32svchost.exe) attempted to load DeviceHarddiskVolume3Program Files (x86)Norton Security SuiteEngine22.20.5.39symamsi.dll that did not meet the Windows signing level requirements.

 

Date: 2020-08-10 08:46:38.1110000Z

Description: 

Code Integrity determined that a process (DeviceHarddiskVolume3WindowsSystem32svchost.exe) attempted to load DeviceHarddiskVolume3Program Files (x86)Norton Security SuiteEngine22.20.5.39symamsi.dll that did not meet the Windows signing level requirements.

 

Date: 2020-08-10 08:46:38.0860000Z

Description: 

Code Integrity determined that a process (DeviceHarddiskVolume3WindowsSystem32svchost.exe) attempted to load DeviceHarddiskVolume3Program Files (x86)Norton Security SuiteEngine22.20.5.39symamsi.dll that did not meet the Windows signing level requirements.

 

Date: 2020-08-10 08:46:03.9710000Z

Description: 

Code Integrity determined that a process (DeviceHarddiskVolume3Program FilesWindows DefenderMpCmdRun.exe) attempted to load DeviceHarddiskVolume3Program Files (x86)Norton Security SuiteEngine22.20.5.39symamsi.dll that did not meet the Microsoft signing level requirements.

 

Date: 2020-08-10 08:46:03.9590000Z

Description: 

Code Integrity determined that a process (DeviceHarddiskVolume3Program FilesWindows DefenderMpCmdRun.exe) attempted to load DeviceHarddiskVolume3Program Files (x86)Norton Security SuiteEngine22.20.5.39symamsi.dll that did not meet the Microsoft signing level requirements.

 

Date: 2020-08-10 08:46:03.9470000Z

Description: 

Code Integrity determined that a process (DeviceHarddiskVolume3Program FilesWindows DefenderMpCmdRun.exe) attempted to load DeviceHarddiskVolume3Program Files (x86)Norton Security SuiteEngine22.20.5.39symamsi.dll that did not meet the Microsoft signing level requirements.

 

Date: 2020-08-10 08:46:03.9350000Z

Description: 

Code Integrity determined that a process (DeviceHarddiskVolume3Program FilesWindows DefenderMpCmdRun.exe) attempted to load DeviceHarddiskVolume3Program Files (x86)Norton Security SuiteEngine22.20.5.39symamsi.dll that did not meet the Microsoft signing level requirements.

 

Date: 2020-08-10 08:46:03.9230000Z

Description: 

Code Integrity determined that a process (DeviceHarddiskVolume3Program FilesWindows DefenderMpCmdRun.exe) attempted to load DeviceHarddiskVolume3Program Files (x86)Norton Security SuiteEngine22.20.5.39symamsi.dll that did not meet the Microsoft signing level requirements.

 

==================== Memory info =========================== 

 

BIOS: Insyde Corp. V1.20 12/13/2016

Motherboard: Acer Ironman_SK

Processor: Intel® Core™ i3-7100U CPU @ 2.40GHz

Percentage of memory in use: 81%

Total physical RAM: 3964.22 MB

Available physical RAM: 731.73 MB

Total Virtual: 7164.22 MB

Available Virtual: 3640.37 MB

 

==================== Drives ================================

 

Drive c: (Windows) (Fixed) (Total:930.4 GB) (Free:623.24 GB) NTFS

 

\?Volume249e1722-0304-47bc-9918-3a2d128b7a30 (Recovery) (Fixed) (Total:1 GB) (Free:0.55 GB) NTFS

\?Volumeaca00020-3340-4af1-ac82-ad00af7f06db (ESP) (Fixed) (Total:0.09 GB) (Free:0.04 GB) FAT32

 

==================== MBR & Partition Table ====================

 

==========================================================

Disk: 0 (Size: 931.5 GB) (Disk ID: ED153DB0)

 

Partition: GPT.

 

==================== End of Addition.txt =======================